Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/xppaut-6.11b+1.dfsg/main.c
Examining data/xppaut-6.11b+1.dfsg/ggets.c
Examining data/xppaut-6.11b+1.dfsg/menu.c
Examining data/xppaut-6.11b+1.dfsg/rubber.c
Examining data/xppaut-6.11b+1.dfsg/derived.c
Examining data/xppaut-6.11b+1.dfsg/init_condold.c
Examining data/xppaut-6.11b+1.dfsg/many_pops.c
Examining data/xppaut-6.11b+1.dfsg/pop_list.c
Examining data/xppaut-6.11b+1.dfsg/graphics.c
Examining data/xppaut-6.11b+1.dfsg/dialog_box.c
Examining data/xppaut-6.11b+1.dfsg/numerics.c
Examining data/xppaut-6.11b+1.dfsg/choice_box.c
Examining data/xppaut-6.11b+1.dfsg/color.c
Examining data/xppaut-6.11b+1.dfsg/init_conds.c
Examining data/xppaut-6.11b+1.dfsg/browse.c
Examining data/xppaut-6.11b+1.dfsg/kinescope.c
Examining data/xppaut-6.11b+1.dfsg/axes2.c
Examining data/xppaut-6.11b+1.dfsg/abort.c
Examining data/xppaut-6.11b+1.dfsg/parser2.c
Examining data/xppaut-6.11b+1.dfsg/storage.c
Examining data/xppaut-6.11b+1.dfsg/load_eqn.c
Examining data/xppaut-6.11b+1.dfsg/lunch-new.c
Examining data/xppaut-6.11b+1.dfsg/form_ode.c
Examining data/xppaut-6.11b+1.dfsg/odesol2.c
Examining data/xppaut-6.11b+1.dfsg/gear.c
Examining data/xppaut-6.11b+1.dfsg/eig_list.c
Examining data/xppaut-6.11b+1.dfsg/integrate.c
Examining data/xppaut-6.11b+1.dfsg/delay_handle.c
Examining data/xppaut-6.11b+1.dfsg/graf_par.c
Examining data/xppaut-6.11b+1.dfsg/my_ps.c
Examining data/xppaut-6.11b+1.dfsg/nullcline.c
Examining data/xppaut-6.11b+1.dfsg/torus.c
Examining data/xppaut-6.11b+1.dfsg/pp_shoot.c
Examining data/xppaut-6.11b+1.dfsg/lunch.c
Examining data/xppaut-6.11b+1.dfsg/calc.c
Examining data/xppaut-6.11b+1.dfsg/adj2.c
Examining data/xppaut-6.11b+1.dfsg/my_rhs.c
Examining data/xppaut-6.11b+1.dfsg/dormpri.c
Examining data/xppaut-6.11b+1.dfsg/volterra2.c
Examining data/xppaut-6.11b+1.dfsg/tabular.c
Examining data/xppaut-6.11b+1.dfsg/markov.c
Examining data/xppaut-6.11b+1.dfsg/histogram.c
Examining data/xppaut-6.11b+1.dfsg/autlib1.c
Examining data/xppaut-6.11b+1.dfsg/autlib2.c
Examining data/xppaut-6.11b+1.dfsg/autlib3.c
Examining data/xppaut-6.11b+1.dfsg/autevd.c
Examining data/xppaut-6.11b+1.dfsg/run_auto.c
Examining data/xppaut-6.11b+1.dfsg/autpp.c
Examining data/xppaut-6.11b+1.dfsg/diagram.c
Examining data/xppaut-6.11b+1.dfsg/auto.c
Examining data/xppaut-6.11b+1.dfsg/flowkm.c
Examining data/xppaut-6.11b+1.dfsg/comline.c
Examining data/xppaut-6.11b+1.dfsg/edit_rhs.c
Examining data/xppaut-6.11b+1.dfsg/do_fit.c
Examining data/xppaut-6.11b+1.dfsg/flags.c
Examining data/xppaut-6.11b+1.dfsg/del_stab.c
Examining data/xppaut-6.11b+1.dfsg/stiff.c
Examining data/xppaut-6.11b+1.dfsg/arrayplot.c
Examining data/xppaut-6.11b+1.dfsg/array_print.c
Examining data/xppaut-6.11b+1.dfsg/aniparse.c
Examining data/xppaut-6.11b+1.dfsg/simplenet.c
Examining data/xppaut-6.11b+1.dfsg/dae_fun.c
Examining data/xppaut-6.11b+1.dfsg/read_dir.c
Examining data/xppaut-6.11b+1.dfsg/parserslow2.c
Examining data/xppaut-6.11b+1.dfsg/kinescope_old.c
Examining data/xppaut-6.11b+1.dfsg/fftn.c
Examining data/xppaut-6.11b+1.dfsg/extra.c
Examining data/xppaut-6.11b+1.dfsg/funexample.c
Examining data/xppaut-6.11b+1.dfsg/scrngif.c
Examining data/xppaut-6.11b+1.dfsg/kinescope_avi.c
Examining data/xppaut-6.11b+1.dfsg/aniparse_avi.c
Examining data/xppaut-6.11b+1.dfsg/nagroutines.c
Examining data/xppaut-6.11b+1.dfsg/flowkm_small.c
Examining data/xppaut-6.11b+1.dfsg/homsup.c
Examining data/xppaut-6.11b+1.dfsg/txtread.c
Examining data/xppaut-6.11b+1.dfsg/rtsafe.c
Examining data/xppaut-6.11b+1.dfsg/vector.c
Examining data/xppaut-6.11b+1.dfsg/userbut.c
Examining data/xppaut-6.11b+1.dfsg/lbf_drive.c
Examining data/xppaut-6.11b+1.dfsg/auto_nox.c
Examining data/xppaut-6.11b+1.dfsg/auto_x11.c
Examining data/xppaut-6.11b+1.dfsg/cli.c
Examining data/xppaut-6.11b+1.dfsg/Version.c
Examining data/xppaut-6.11b+1.dfsg/backspace.c
Examining data/xppaut-6.11b+1.dfsg/dfe.c
Examining data/xppaut-6.11b+1.dfsg/due.c
Examining data/xppaut-6.11b+1.dfsg/iio.c
Examining data/xppaut-6.11b+1.dfsg/inquire.c
Examining data/xppaut-6.11b+1.dfsg/rewind.c
Examining data/xppaut-6.11b+1.dfsg/rsfe.c
Examining data/xppaut-6.11b+1.dfsg/rdfmt.c
Examining data/xppaut-6.11b+1.dfsg/sue.c
Examining data/xppaut-6.11b+1.dfsg/uio.c
Examining data/xppaut-6.11b+1.dfsg/wsfe.c
Examining data/xppaut-6.11b+1.dfsg/sfe.c
Examining data/xppaut-6.11b+1.dfsg/fmt.c
Examining data/xppaut-6.11b+1.dfsg/lio.c
Examining data/xppaut-6.11b+1.dfsg/lread.c
Examining data/xppaut-6.11b+1.dfsg/open.c
Examining data/xppaut-6.11b+1.dfsg/close.c
Examining data/xppaut-6.11b+1.dfsg/util.c
Examining data/xppaut-6.11b+1.dfsg/endfile.c
Examining data/xppaut-6.11b+1.dfsg/wrtfmt.c
Examining data/xppaut-6.11b+1.dfsg/wref.c
Examining data/xppaut-6.11b+1.dfsg/err.c
Examining data/xppaut-6.11b+1.dfsg/fmtlib.c
Examining data/xppaut-6.11b+1.dfsg/rsne.c
Examining data/xppaut-6.11b+1.dfsg/wsne.c
Examining data/xppaut-6.11b+1.dfsg/fc77.c
Examining data/xppaut-6.11b+1.dfsg/f2cstart.c
Examining data/xppaut-6.11b+1.dfsg/cvode.c
Examining data/xppaut-6.11b+1.dfsg/cvdense.c
Examining data/xppaut-6.11b+1.dfsg/dense.c
Examining data/xppaut-6.11b+1.dfsg/cvband.c
Examining data/xppaut-6.11b+1.dfsg/band.c
Examining data/xppaut-6.11b+1.dfsg/cvdiag.c
Examining data/xppaut-6.11b+1.dfsg/cvspgmr.c
Examining data/xppaut-6.11b+1.dfsg/spgmr.c
Examining data/xppaut-6.11b+1.dfsg/iterativ.c
Examining data/xppaut-6.11b+1.dfsg/llnlmath.c
Examining data/xppaut-6.11b+1.dfsg/cv2.c
Examining data/xppaut-6.11b+1.dfsg/mainold.c
Examining data/xppaut-6.11b+1.dfsg/load_eqnold.c
Examining data/xppaut-6.11b+1.dfsg/ggetsold.c
Examining data/xppaut-6.11b+1.dfsg/comlineold.c
Examining data/xppaut-6.11b+1.dfsg/abort.h
Examining data/xppaut-6.11b+1.dfsg/comline.h
Examining data/xppaut-6.11b+1.dfsg/extra.h
Examining data/xppaut-6.11b+1.dfsg/kinescope.h
Examining data/xppaut-6.11b+1.dfsg/newhome.h
Examining data/xppaut-6.11b+1.dfsg/stiff.h
Examining data/xppaut-6.11b+1.dfsg/adj2.h
Examining data/xppaut-6.11b+1.dfsg/cvband.h
Examining data/xppaut-6.11b+1.dfsg/f2c.h
Examining data/xppaut-6.11b+1.dfsg/lio.h
Examining data/xppaut-6.11b+1.dfsg/newpars.h
Examining data/xppaut-6.11b+1.dfsg/storage.h
Examining data/xppaut-6.11b+1.dfsg/aniparse_avi.h
Examining data/xppaut-6.11b+1.dfsg/cvdense.h
Examining data/xppaut-6.11b+1.dfsg/fftn.h
Examining data/xppaut-6.11b+1.dfsg/llnlmath.h
Examining data/xppaut-6.11b+1.dfsg/nullcline.h
Examining data/xppaut-6.11b+1.dfsg/struct.h
Examining data/xppaut-6.11b+1.dfsg/aniparse.h
Examining data/xppaut-6.11b+1.dfsg/cvdiag.h
Examining data/xppaut-6.11b+1.dfsg/fio.h
Examining data/xppaut-6.11b+1.dfsg/llnltyps.h
Examining data/xppaut-6.11b+1.dfsg/numerics.h
Examining data/xppaut-6.11b+1.dfsg/sue.h
Examining data/xppaut-6.11b+1.dfsg/arrayplot.h
Examining data/xppaut-6.11b+1.dfsg/cvode.h
Examining data/xppaut-6.11b+1.dfsg/flags.h
Examining data/xppaut-6.11b+1.dfsg/load_eqn.h
Examining data/xppaut-6.11b+1.dfsg/odesol2.h
Examining data/xppaut-6.11b+1.dfsg/tabular.h
Examining data/xppaut-6.11b+1.dfsg/array_print.h
Examining data/xppaut-6.11b+1.dfsg/cvspgmr.h
Examining data/xppaut-6.11b+1.dfsg/fmt.h
Examining data/xppaut-6.11b+1.dfsg/local.h
Examining data/xppaut-6.11b+1.dfsg/toons.h
Examining data/xppaut-6.11b+1.dfsg/autevd.h
Examining data/xppaut-6.11b+1.dfsg/dae_fun.h
Examining data/xppaut-6.11b+1.dfsg/form_ode.h
Examining data/xppaut-6.11b+1.dfsg/lread.h
Examining data/xppaut-6.11b+1.dfsg/open.h
Examining data/xppaut-6.11b+1.dfsg/torus.h
Examining data/xppaut-6.11b+1.dfsg/autlib1.h
Examining data/xppaut-6.11b+1.dfsg/delay_handle.h
Examining data/xppaut-6.11b+1.dfsg/fp.h
Examining data/xppaut-6.11b+1.dfsg/lunch-new.h
Examining data/xppaut-6.11b+1.dfsg/parser.h
Examining data/xppaut-6.11b+1.dfsg/txtread.h
Examining data/xppaut-6.11b+1.dfsg/autlib2.h
Examining data/xppaut-6.11b+1.dfsg/del_stab.h
Examining data/xppaut-6.11b+1.dfsg/gear.h
Examining data/xppaut-6.11b+1.dfsg/parserslow.h
Examining data/xppaut-6.11b+1.dfsg/uio.h
Examining data/xppaut-6.11b+1.dfsg/autlim.h
Examining data/xppaut-6.11b+1.dfsg/dense.h
Examining data/xppaut-6.11b+1.dfsg/getvar.h
Examining data/xppaut-6.11b+1.dfsg/phsplan.h
Examining data/xppaut-6.11b+1.dfsg/userbut.h
Examining data/xppaut-6.11b+1.dfsg/auto_define.h
Examining data/xppaut-6.11b+1.dfsg/derived.h
Examining data/xppaut-6.11b+1.dfsg/ggets.h
Examining data/xppaut-6.11b+1.dfsg/main.h
Examining data/xppaut-6.11b+1.dfsg/pop_list.h
Examining data/xppaut-6.11b+1.dfsg/util.h
Examining data/xppaut-6.11b+1.dfsg/auto.h
Examining data/xppaut-6.11b+1.dfsg/dfe.h
Examining data/xppaut-6.11b+1.dfsg/graf_par.h
Examining data/xppaut-6.11b+1.dfsg/many_pops.h
Examining data/xppaut-6.11b+1.dfsg/pp_shoot.h
Examining data/xppaut-6.11b+1.dfsg/vector.h
Examining data/xppaut-6.11b+1.dfsg/auto_nox.h
Examining data/xppaut-6.11b+1.dfsg/diagram.h
Examining data/xppaut-6.11b+1.dfsg/graphics.h
Examining data/xppaut-6.11b+1.dfsg/markov.h
Examining data/xppaut-6.11b+1.dfsg/rdfmt.h
Examining data/xppaut-6.11b+1.dfsg/volterra2.h
Examining data/xppaut-6.11b+1.dfsg/auto_x11.h
Examining data/xppaut-6.11b+1.dfsg/dialog_box.h
Examining data/xppaut-6.11b+1.dfsg/help_defs.h
Examining data/xppaut-6.11b+1.dfsg/menudrive.h
Examining data/xppaut-6.11b+1.dfsg/read_dir.h
Examining data/xppaut-6.11b+1.dfsg/volterra.h
Examining data/xppaut-6.11b+1.dfsg/axes2.h
Examining data/xppaut-6.11b+1.dfsg/do_fit.h
Examining data/xppaut-6.11b+1.dfsg/histogram.h
Examining data/xppaut-6.11b+1.dfsg/menu.h
Examining data/xppaut-6.11b+1.dfsg/rubber.h
Examining data/xppaut-6.11b+1.dfsg/wref.h
Examining data/xppaut-6.11b+1.dfsg/band.h
Examining data/xppaut-6.11b+1.dfsg/dormpri.h
Examining data/xppaut-6.11b+1.dfsg/homsup.h
Examining data/xppaut-6.11b+1.dfsg/menus.h
Examining data/xppaut-6.11b+1.dfsg/run_auto.h
Examining data/xppaut-6.11b+1.dfsg/wrtfmt.h
Examining data/xppaut-6.11b+1.dfsg/browse.h
Examining data/xppaut-6.11b+1.dfsg/due.h
Examining data/xppaut-6.11b+1.dfsg/iio.h
Examining data/xppaut-6.11b+1.dfsg/myfonts.h
Examining data/xppaut-6.11b+1.dfsg/scrngif.h
Examining data/xppaut-6.11b+1.dfsg/wsfe.h
Examining data/xppaut-6.11b+1.dfsg/calc.h
Examining data/xppaut-6.11b+1.dfsg/edit_rhs.h
Examining data/xppaut-6.11b+1.dfsg/init_conds.h
Examining data/xppaut-6.11b+1.dfsg/mykeydef.h
Examining data/xppaut-6.11b+1.dfsg/sfe.h
Examining data/xppaut-6.11b+1.dfsg/wsne.h
Examining data/xppaut-6.11b+1.dfsg/choice_box.h
Examining data/xppaut-6.11b+1.dfsg/eig_list.h
Examining data/xppaut-6.11b+1.dfsg/integrate.h
Examining data/xppaut-6.11b+1.dfsg/my_pars.h
Examining data/xppaut-6.11b+1.dfsg/shoot.h
Examining data/xppaut-6.11b+1.dfsg/xpplim.h
Examining data/xppaut-6.11b+1.dfsg/close.h
Examining data/xppaut-6.11b+1.dfsg/endfile.h
Examining data/xppaut-6.11b+1.dfsg/iterativ.h
Examining data/xppaut-6.11b+1.dfsg/my_ps.h
Examining data/xppaut-6.11b+1.dfsg/simplenet.h
Examining data/xppaut-6.11b+1.dfsg/color.h
Examining data/xppaut-6.11b+1.dfsg/err.h
Examining data/xppaut-6.11b+1.dfsg/kbs.h
Examining data/xppaut-6.11b+1.dfsg/my_rhs.h
Examining data/xppaut-6.11b+1.dfsg/spgmr.h
Examining data/xppaut-6.11b+1.dfsg/cv2.h
Examining data/xppaut-6.11b+1.dfsg/ode/example.c
Examining data/xppaut-6.11b+1.dfsg/ode/getmax.c
Examining data/xppaut-6.11b+1.dfsg/ode/getmin.c
Examining data/xppaut-6.11b+1.dfsg/ode/nthet.c
Examining data/xppaut-6.11b+1.dfsg/ode/t.c
Examining data/xppaut-6.11b+1.dfsg/nullcline_bw.c
Examining data/xppaut-6.11b+1.dfsg/help/odes/front.c
Examining data/xppaut-6.11b+1.dfsg/help/odes/pp.c
Examining data/xppaut-6.11b+1.dfsg/sbml2xpp.c
Examining data/xppaut-6.11b+1.dfsg/menudrive.c
FINAL RESULTS:
data/xppaut-6.11b+1.dfsg/adj2.c:76:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(my_trans.firstcol,uvar_names[0]);
data/xppaut-6.11b+1.dfsg/adj2.c:109:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",my_trans.firstcol);
data/xppaut-6.11b+1.dfsg/adj2.c:132:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(my_trans.firstcol,values[0]);
data/xppaut-6.11b+1.dfsg/adj2.c:323:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(name,"Coupling for %s eqn:",uvar_names[i]);
data/xppaut-6.11b+1.dfsg/aniparse.c:570:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[1],"%s",mpeg.root);
data/xppaut-6.11b+1.dfsg/aniparse.c:577:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(mpeg.root,"%s",values[1]);
data/xppaut-6.11b+1.dfsg/aniparse.c:868:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fname,"%s_%d.ppm",mpeg.root,mpeg_write);
data/xppaut-6.11b+1.dfsg/aniparse.c:1098:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(vcr.file,anifile);
data/xppaut-6.11b+1.dfsg/aniparse.c:1122:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(vcr.file,fname);
data/xppaut-6.11b+1.dfsg/aniparse.c:1255:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1258:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1261:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x3,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1268:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1271:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1274:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x3,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1277:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x4,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1280:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(col,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1283:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(thick,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1292:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1295:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1298:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x3,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1301:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x4,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1304:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(col,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1307:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(thick,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1312:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1315:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1318:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(col,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1321:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(thick,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1326:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1329:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1332:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(thick,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1335:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x3,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1338:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(col,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1344:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1347:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1350:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x3,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1353:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(col,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1358:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1361:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1364:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(col,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1369:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1372:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1375:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x4,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1380:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1383:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1386:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x4,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1389:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x3,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1401:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1404:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1407:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x3,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1410:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x4,nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1867:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s,y2);
data/xppaut-6.11b+1.dfsg/aniparse.c:1885:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s,y2);
data/xppaut-6.11b+1.dfsg/aniparse.c:2388:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s2,"%s%g",s,my_ani[j].zval);
data/xppaut-6.11b+1.dfsg/aniparse.c:2449:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(s,temp);
data/xppaut-6.11b+1.dfsg/aniparse.c:2543:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rhs,form);
data/xppaut-6.11b+1.dfsg/aniparse.c:2550:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(lhs,form);
data/xppaut-6.11b+1.dfsg/aniparse.c:2618:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ani_grab[igrab].start.lhsname[i],lhs);
data/xppaut-6.11b+1.dfsg/aniparse.c:2643:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ani_grab[igrab].end.lhsname[i],lhs);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:378:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[1],"%s",mpeg.root);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:393:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(mpeg.root,"%s",values[1]);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:614:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fname,"%s_%d.ppm",mpeg.root,mpeg_write);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:616:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fname,"%s_%d.gif",mpeg.root,mpeg_write);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:994:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:997:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1000:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x3,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1003:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x4,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1006:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(col,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1009:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(thick,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1014:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1017:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1020:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(col,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1023:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(thick,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1028:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1031:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1034:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(thick,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1037:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x3,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1040:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(col,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1046:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1049:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1052:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x3,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1055:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(col,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1060:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1063:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1066:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(col,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1071:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1074:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1077:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x4,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1082:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1085:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1088:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x4,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1091:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x3,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1103:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x1,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1106:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x2,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1109:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x3,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1112:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x4,nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1522:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s,y2);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1540:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s,y2);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1989:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s2,"%s%g",s,my_ani[j].zval);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:2049:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(s,temp);
data/xppaut-6.11b+1.dfsg/arrayplot.c:102:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(filename,"%s.%d.gif",aplot_range_stem,aplot_range_count);
data/xppaut-6.11b+1.dfsg/arrayplot.c:114:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",aplot_range_stem);
data/xppaut-6.11b+1.dfsg/arrayplot.c:119:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(aplot_range_stem,"%s",values[0]);
data/xppaut-6.11b+1.dfsg/arrayplot.c:149:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(aplot.name,uvar_names[i0]);
data/xppaut-6.11b+1.dfsg/arrayplot.c:365:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",ap->filename);
data/xppaut-6.11b+1.dfsg/arrayplot.c:366:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[1],"%s",ap->xtitle);
data/xppaut-6.11b+1.dfsg/arrayplot.c:367:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[2],"%s",ap->ytitle);
data/xppaut-6.11b+1.dfsg/arrayplot.c:368:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[3],"%s",ap->bottom);
data/xppaut-6.11b+1.dfsg/arrayplot.c:372:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ap->filename,values[0]);
data/xppaut-6.11b+1.dfsg/arrayplot.c:373:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ap->xtitle,values[1]);
data/xppaut-6.11b+1.dfsg/arrayplot.c:374:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ap->ytitle,values[2]);
data/xppaut-6.11b+1.dfsg/arrayplot.c:375:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ap->bottom,values[3]);
data/xppaut-6.11b+1.dfsg/arrayplot.c:456:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if(i<0)strcpy(sroot,s);
data/xppaut-6.11b+1.dfsg/arrayplot.c:479:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(bob,"%s%d..%d",sroot,num,num+ap.nacross-1);
data/xppaut-6.11b+1.dfsg/arrayplot.c:514:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",ap->name);
data/xppaut-6.11b+1.dfsg/arrayplot.c:528:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ap->name,values[0]);
data/xppaut-6.11b+1.dfsg/arrayplot.c:611:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(filename,"%s.gif",this_file);
data/xppaut-6.11b+1.dfsg/auto.c:220:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(xlabel,"%s",upar_names[AutoPar[Auto.icp1]]);
data/xppaut-6.11b+1.dfsg/auto.c:224:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ylabel,"%s",uvar_names[Auto.var]);
data/xppaut-6.11b+1.dfsg/auto.c:236:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ylabel,"%s",upar_names[AutoPar[Auto.icp2]]);
data/xppaut-6.11b+1.dfsg/auto.c:239:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ylabel,"%s_bar",uvar_names[Auto.var]);
data/xppaut-6.11b+1.dfsg/auto.c:431:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.p",this_file);
data/xppaut-6.11b+1.dfsg/auto.c:433:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.d",this_file);
data/xppaut-6.11b+1.dfsg/auto.c:435:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.q",this_file);
data/xppaut-6.11b+1.dfsg/auto.c:439:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.p",this_file);
data/xppaut-6.11b+1.dfsg/auto.c:441:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.d",this_file);
data/xppaut-6.11b+1.dfsg/auto.c:444:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.q",this_file);
data/xppaut-6.11b+1.dfsg/auto.c:460:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.q",this_file);
data/xppaut-6.11b+1.dfsg/auto.c:513:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s,"%s",upar_names[AutoPar[index]]);
data/xppaut-6.11b+1.dfsg/auto.c:536:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[i],"%s=%g",bob,Auto.period[i]);
data/xppaut-6.11b+1.dfsg/auto.c:564:21: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if(i<NAutoPar) sprintf(values[i],"%s",upar_names[AutoPar[i]]);
data/xppaut-6.11b+1.dfsg/auto.c:679:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",n1);
data/xppaut-6.11b+1.dfsg/auto.c:680:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[1],"%s",upar_names[AutoPar[Auto.icp1]]);
data/xppaut-6.11b+1.dfsg/auto.c:681:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[2],"%s",upar_names[AutoPar[Auto.icp2]]);
data/xppaut-6.11b+1.dfsg/auto.c:1017:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(p1name,"%s",upar_names[AutoPar[icp1]]);
data/xppaut-6.11b+1.dfsg/auto.c:1018:20: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if(icp2<NAutoPar)sprintf(p2name,"%s",upar_names[AutoPar[icp2]]);
data/xppaut-6.11b+1.dfsg/auto.c:1021:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(bob," Br Pt Ty Lab %10s %10s norm %10s period",
data/xppaut-6.11b+1.dfsg/auto.c:1040:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(bob,"%4d %4d %2s %4d %10.4g %10.4g %10.4g %10.4g %10.4g",
data/xppaut-6.11b+1.dfsg/auto.c:1453:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.p",this_file);
data/xppaut-6.11b+1.dfsg/auto.c:1455:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.d",this_file);
data/xppaut-6.11b+1.dfsg/auto.c:1457:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.q",this_file);
data/xppaut-6.11b+1.dfsg/auto.c:2057:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.q",this_file);
data/xppaut-6.11b+1.dfsg/auto.c:2100:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(filename,"%s.auto",this_file);
data/xppaut-6.11b+1.dfsg/auto.c:2176:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.q",this_file);
data/xppaut-6.11b+1.dfsg/auto.c:2195:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.q",this_file);
data/xppaut-6.11b+1.dfsg/auto.c:2234:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(filename,"%s.auto",this_file);
data/xppaut-6.11b+1.dfsg/auto.c:2341:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Auto.hinttxt,auto_hint[i]);
data/xppaut-6.11b+1.dfsg/auto_nox.c:262:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(xlabel,"%s",upar_names[AutoPar[Auto.icp1]]);
data/xppaut-6.11b+1.dfsg/auto_nox.c:266:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ylabel,"%s",uvar_names[Auto.var]);
data/xppaut-6.11b+1.dfsg/auto_nox.c:278:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ylabel,"%s",upar_names[AutoPar[Auto.icp2]]);
data/xppaut-6.11b+1.dfsg/auto_nox.c:281:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ylabel,"%s_bar",uvar_names[Auto.var]);
data/xppaut-6.11b+1.dfsg/auto_nox.c:408:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.p",this_auto_file);
data/xppaut-6.11b+1.dfsg/auto_nox.c:410:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.d",this_auto_file);
data/xppaut-6.11b+1.dfsg/auto_nox.c:412:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.q",this_auto_file);
data/xppaut-6.11b+1.dfsg/auto_nox.c:416:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.p",this_auto_file);
data/xppaut-6.11b+1.dfsg/auto_nox.c:418:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.d",this_auto_file);
data/xppaut-6.11b+1.dfsg/auto_nox.c:420:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.q",this_auto_file);
data/xppaut-6.11b+1.dfsg/auto_nox.c:448:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(this_auto_file,"%s/%s",HOME,bname);
data/xppaut-6.11b+1.dfsg/auto_nox.c:449:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fort3,"%s/%s",HOME,"fort.3");
data/xppaut-6.11b+1.dfsg/auto_nox.c:450:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fort7,"%s/%s",HOME,"fort.7");
data/xppaut-6.11b+1.dfsg/auto_nox.c:451:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fort8,"%s/%s",HOME,"fort.8");
data/xppaut-6.11b+1.dfsg/auto_nox.c:452:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fort9,"%s/%s",HOME,"fort.9");
data/xppaut-6.11b+1.dfsg/auto_nox.c:453:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(TMPSWAP,"%s/%s",HOME,"__tmp__");
data/xppaut-6.11b+1.dfsg/auto_nox.c:457:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.q",this_auto_file);
data/xppaut-6.11b+1.dfsg/auto_nox.c:512:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s,"%s",upar_names[AutoPar[index]]);
data/xppaut-6.11b+1.dfsg/auto_nox.c:535:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[i],"%s=%g",bob,Auto.period[i]);
data/xppaut-6.11b+1.dfsg/auto_nox.c:563:21: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if(i<NAutoPar) sprintf(values[i],"%s",upar_names[AutoPar[i]]);
data/xppaut-6.11b+1.dfsg/auto_nox.c:690:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",n1);
data/xppaut-6.11b+1.dfsg/auto_nox.c:691:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[1],"%s",upar_names[AutoPar[Auto.icp1]]);
data/xppaut-6.11b+1.dfsg/auto_nox.c:692:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[2],"%s",upar_names[AutoPar[Auto.icp2]]);
data/xppaut-6.11b+1.dfsg/auto_nox.c:1139:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(p1name,"%s",upar_names[AutoPar[icp1]]);
data/xppaut-6.11b+1.dfsg/auto_nox.c:1140:20: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if(icp2<NAutoPar)sprintf(p2name,"%s",upar_names[AutoPar[icp2]]);
data/xppaut-6.11b+1.dfsg/auto_nox.c:1143:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(bob," Br Pt Ty Lab %10s %10s norm %10s period",
data/xppaut-6.11b+1.dfsg/auto_nox.c:1162:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(bob,"%4d %4d %2s %4d %10.4g %10.4g %10.4g %10.4g %10.4g",
data/xppaut-6.11b+1.dfsg/auto_nox.c:1385:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.p",this_auto_file);
data/xppaut-6.11b+1.dfsg/auto_nox.c:1387:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.d",this_auto_file);
data/xppaut-6.11b+1.dfsg/auto_nox.c:1389:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.q",this_auto_file);
data/xppaut-6.11b+1.dfsg/auto_nox.c:2045:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.q",this_auto_file);
data/xppaut-6.11b+1.dfsg/auto_nox.c:2089:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(filename,"%s.auto",basename(this_auto_file));
data/xppaut-6.11b+1.dfsg/auto_nox.c:2165:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.q",this_auto_file);
data/xppaut-6.11b+1.dfsg/auto_nox.c:2184:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(string,"%s.q",this_auto_file);
data/xppaut-6.11b+1.dfsg/auto_nox.c:2223:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(filename,"%s.auto",basename(this_auto_file));
data/xppaut-6.11b+1.dfsg/auto_x11.c:839:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(Auto.hinttxt,auto_hint[i]);
data/xppaut-6.11b+1.dfsg/axes2.c:58:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else strcpy(s1,uvar_names[i-1]);
data/xppaut-6.11b+1.dfsg/axes2.c:61:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else strcpy(s2,uvar_names[i-1]);
data/xppaut-6.11b+1.dfsg/axes2.c:64:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else strcpy(s3,uvar_names[i-1]);
data/xppaut-6.11b+1.dfsg/axes2.c:75:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else strcpy(name1,uvar_names[i-1]);
data/xppaut-6.11b+1.dfsg/axes2.c:78:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else strcpy(name2,uvar_names[i-1]);
data/xppaut-6.11b+1.dfsg/axes2.c:81:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else strcpy(name3,uvar_names[i-1]);
data/xppaut-6.11b+1.dfsg/axes2.c:84:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(str,"%s vs %s vs %s",name3,name2,name1);
data/xppaut-6.11b+1.dfsg/axes2.c:85:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
else sprintf(str,"%s vs %s",name2,name1);
data/xppaut-6.11b+1.dfsg/browse.c:246:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(uvar_names[j-1],uvar_names[j]);
data/xppaut-6.11b+1.dfsg/browse.c:247:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ode_names[j-1],ode_names[j]);
data/xppaut-6.11b+1.dfsg/browse.c:321:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ode_names[NEQ],formula);
data/xppaut-6.11b+1.dfsg/browse.c:325:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(uvar_names[NEQ],name);
data/xppaut-6.11b+1.dfsg/browse.c:580:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(b->hinttxt,browse_hint[i]);
data/xppaut-6.11b+1.dfsg/browse.c:1277:1: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(var,uvar_names[0]);
data/xppaut-6.11b+1.dfsg/browse.c:1278:1: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(form,uvar_names[0]);
data/xppaut-6.11b+1.dfsg/browse.c:1312:2: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(value[0],uvar_names[0]);
data/xppaut-6.11b+1.dfsg/browse.c:1315:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(value[3],"%s.tab",value[0]);
data/xppaut-6.11b+1.dfsg/browse.c:1345:2: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(value[0],uvar_names[0]);
data/xppaut-6.11b+1.dfsg/cli.c:47:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(sname,"*%s",names[k]+2);
data/xppaut-6.11b+1.dfsg/cli.c:49:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(sname,"%s",names[k]);
data/xppaut-6.11b+1.dfsg/cli.c:50:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(item,"%d: %s=%s",k,sname,values[k]);
data/xppaut-6.11b+1.dfsg/cli.c:106:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(values[i],newval);
data/xppaut-6.11b+1.dfsg/cli.c:108:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(sname,"%s",names[i]+2);
data/xppaut-6.11b+1.dfsg/cli.c:110:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(sname,"%s",names[i]);
data/xppaut-6.11b+1.dfsg/cli.c:162:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s","alpha");
data/xppaut-6.11b+1.dfsg/cli.c:166:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[4],"%s","N");
data/xppaut-6.11b+1.dfsg/cli.c:168:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[6],"%s","N");
data/xppaut-6.11b+1.dfsg/cli.c:185:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(value,bob);
data/xppaut-6.11b+1.dfsg/comline.c:244:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(setfilename,argv[i+1]);
data/xppaut-6.11b+1.dfsg/comline.c:250:41: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (notAlreadySet.SMALL_FONT_NAME){strcpy(small_font_name,argv[i+1]);notAlreadySet.SMALL_FONT_NAME=0;};
data/xppaut-6.11b+1.dfsg/comline.c:254:39: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (notAlreadySet.BIG_FONT_NAME){strcpy(big_font_name,argv[i+1]);notAlreadySet.BIG_FONT_NAME=0;};
data/xppaut-6.11b+1.dfsg/comline.c:259:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(parfilename,argv[i+1]);
data/xppaut-6.11b+1.dfsg/comline.c:265:6: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(batchout,argv[i+1]);
data/xppaut-6.11b+1.dfsg/comline.c:266:6: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(UserOUTFILE,argv[i+1]);
data/xppaut-6.11b+1.dfsg/comline.c:270:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(icfilename,argv[i+1]);
data/xppaut-6.11b+1.dfsg/comline.c:350:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(includefilename[NincludedFiles],argv[i+1]);
data/xppaut-6.11b+1.dfsg/comline.c:364:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(anifile,argv[i+1]);
data/xppaut-6.11b+1.dfsg/comline.c:602:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(this_file,com);
data/xppaut-6.11b+1.dfsg/comlineold.c:237:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(setfilename,argv[i+1]);
data/xppaut-6.11b+1.dfsg/comlineold.c:243:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(small_font_name,argv[i+1]);
data/xppaut-6.11b+1.dfsg/comlineold.c:247:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(big_font_name,argv[i+1]);
data/xppaut-6.11b+1.dfsg/comlineold.c:252:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(parfilename,argv[i+1]);
data/xppaut-6.11b+1.dfsg/comlineold.c:258:6: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(batchout,argv[i+1]);
data/xppaut-6.11b+1.dfsg/comlineold.c:259:6: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(UserOUTFILE,argv[i+1]);
data/xppaut-6.11b+1.dfsg/comlineold.c:263:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(icfilename,argv[i+1]);
data/xppaut-6.11b+1.dfsg/comlineold.c:340:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(includefilename,argv[i+1]);
data/xppaut-6.11b+1.dfsg/comlineold.c:556:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(this_file,com);
data/xppaut-6.11b+1.dfsg/cvband.c:269:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/cvband.c:278:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_BAD_SIZES, (long int)ml, (long int)mu, (long int)(N-1));
data/xppaut-6.11b+1.dfsg/cvband.c:288:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/cvband.c:293:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/cvband.c:299:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/cvdense.c:233:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/cvdense.c:244:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/cvdense.c:249:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/cvdense.c:255:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/cvdiag.c:149:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/cvdiag.c:160:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/cvdiag.c:165:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/cvdiag.c:171:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/cvode.c:487:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, MSG_Y0_NULL);
data/xppaut-6.11b+1.dfsg/cvode.c:492:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, MSG_BAD_N, (long int)N);
data/xppaut-6.11b+1.dfsg/cvode.c:497:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, MSG_BAD_LMM, lmm, ADAMS, BDF);
data/xppaut-6.11b+1.dfsg/cvode.c:502:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, MSG_BAD_ITER, iter, FUNCTIONAL, NEWTON);
data/xppaut-6.11b+1.dfsg/cvode.c:507:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, MSG_BAD_ITOL, itol, SS, SV);
data/xppaut-6.11b+1.dfsg/cvode.c:512:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, MSG_F_NULL);
data/xppaut-6.11b+1.dfsg/cvode.c:517:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, MSG_RELTOL_NULL);
data/xppaut-6.11b+1.dfsg/cvode.c:522:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, MSG_BAD_RELTOL, *reltol);
data/xppaut-6.11b+1.dfsg/cvode.c:527:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, MSG_ABSTOL_NULL);
data/xppaut-6.11b+1.dfsg/cvode.c:537:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, MSG_BAD_ABSTOL);
data/xppaut-6.11b+1.dfsg/cvode.c:542:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, MSG_BAD_OPTIN, optIn, FALSE, TRUE);
data/xppaut-6.11b+1.dfsg/cvode.c:547:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, MSG_BAD_OPT);
data/xppaut-6.11b+1.dfsg/cvode.c:556:7: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, MSG_BAD_HMIN_HMAX, ropt[HMIN], ropt[HMAX]);
data/xppaut-6.11b+1.dfsg/cvode.c:571:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/cvode.c:579:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/cvode.c:588:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, MSG_BAD_EWT);
data/xppaut-6.11b+1.dfsg/cvode.c:745:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stdout, MSG_CVODE_NO_MEM);
data/xppaut-6.11b+1.dfsg/cvode.c:750:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_YOUT_NULL);
data/xppaut-6.11b+1.dfsg/cvode.c:755:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_T_NULL);
data/xppaut-6.11b+1.dfsg/cvode.c:761:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_BAD_ITASK, itask, NORMAL, ONE_STEP);
data/xppaut-6.11b+1.dfsg/cvode.c:770:2: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_LINIT_NULL);
data/xppaut-6.11b+1.dfsg/cvode.c:774:2: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_LSETUP_NULL);
data/xppaut-6.11b+1.dfsg/cvode.c:778:2: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_LSOLVE_NULL);
data/xppaut-6.11b+1.dfsg/cvode.c:782:2: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_LFREE_NULL);
data/xppaut-6.11b+1.dfsg/cvode.c:787:2: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_LINIT_FAIL);
data/xppaut-6.11b+1.dfsg/cvode.c:797:7: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_BAD_H0, h, tout-tn);
data/xppaut-6.11b+1.dfsg/cvode.c:803:2: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_TOO_CLOSE, tout, tn);
data/xppaut-6.11b+1.dfsg/cvode.c:820:7: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_BAD_TOUT, tout);
data/xppaut-6.11b+1.dfsg/cvode.c:839:2: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_EWT_NOW_BAD, tn);
data/xppaut-6.11b+1.dfsg/cvode.c:850:7: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_MAX_STEPS, tn, mxstep, tout);
data/xppaut-6.11b+1.dfsg/cvode.c:860:7: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_TOO_MUCH_ACC, tn);
data/xppaut-6.11b+1.dfsg/cvode.c:872:28: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if (nhnil <= mxhnil) fprintf(errfp, MSG_HNIL, tn, h);
data/xppaut-6.11b+1.dfsg/cvode.c:873:28: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if (nhnil == mxhnil) fprintf(errfp, MSG_HNIL_DONE, mxhnil);
data/xppaut-6.11b+1.dfsg/cvode.c:965:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stdout, MSG_DKY_NO_MEM);
data/xppaut-6.11b+1.dfsg/cvode.c:970:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stdout, MSG_BAD_DKY);
data/xppaut-6.11b+1.dfsg/cvode.c:975:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_BAD_K, k);
data/xppaut-6.11b+1.dfsg/cvode.c:983:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_BAD_T, t, tn-hu, tn);
data/xppaut-6.11b+1.dfsg/cvode.c:2383:25: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
case REP_ERR_FAIL: fprintf(errfp, MSG_ERR_FAILS, tn, h);
data/xppaut-6.11b+1.dfsg/cvode.c:2385:25: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
case REP_CONV_FAIL: fprintf(errfp, MSG_CONV_FAILS, tn, h);
data/xppaut-6.11b+1.dfsg/cvode.c:2387:25: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
case SETUP_FAILED: fprintf(errfp, MSG_SETUP_FAILED, tn);
data/xppaut-6.11b+1.dfsg/cvode.c:2389:25: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
case SOLVE_FAILED: fprintf(errfp, MSG_SOLVE_FAILED, tn);
data/xppaut-6.11b+1.dfsg/cvspgmr.c:233:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/cvspgmr.c:240:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_BAD_PRETYPE, pretype, NONE, LEFT, RIGHT, BOTH);
data/xppaut-6.11b+1.dfsg/cvspgmr.c:244:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_PSOLVE_REQ);
data/xppaut-6.11b+1.dfsg/cvspgmr.c:250:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_BAD_GSTYPE, gstype, MODIFIED_GS, CLASSICAL_GS);
data/xppaut-6.11b+1.dfsg/cvspgmr.c:257:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/cvspgmr.c:262:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/cvspgmr.c:270:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSG_MEM_FAIL);
data/xppaut-6.11b+1.dfsg/dae_fun.c:66:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(svar[nsvar].name,name);
data/xppaut-6.11b+1.dfsg/dae_fun.c:68:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(svar[nsvar].rhs,rhs);
data/xppaut-6.11b+1.dfsg/dae_fun.c:98:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(aeqn[naeqn].rhs,rhs);
data/xppaut-6.11b+1.dfsg/dae_fun.c:303:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(name,"Initial %s(%g):",svar[i].name,z);
data/xppaut-6.11b+1.dfsg/derived.c:82:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(derived[i0].rhs,rhs);
data/xppaut-6.11b+1.dfsg/dialog_box.c:59:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(d.mes_s,name);
data/xppaut-6.11b+1.dfsg/dialog_box.c:60:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(d.input_s,value);
data/xppaut-6.11b+1.dfsg/dialog_box.c:61:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(d.ok_s,ok);
data/xppaut-6.11b+1.dfsg/dialog_box.c:62:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(d.cancel_s,cancel);
data/xppaut-6.11b+1.dfsg/dialog_box.c:109:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(value,d.input_s);
data/xppaut-6.11b+1.dfsg/do_fit.c:333:2: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(collist,fin.collist);
data/xppaut-6.11b+1.dfsg/do_fit.c:334:2: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(varlist,fin.varlist);
data/xppaut-6.11b+1.dfsg/do_fit.c:335:2: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(parlist1,fin.parlist1);
data/xppaut-6.11b+1.dfsg/do_fit.c:336:2: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(parlist2,fin.parlist2);
data/xppaut-6.11b+1.dfsg/do_fit.c:730:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",fin.file);
data/xppaut-6.11b+1.dfsg/do_fit.c:731:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[1],"%s",fin.varlist);
data/xppaut-6.11b+1.dfsg/do_fit.c:732:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[2],"%s",fin.parlist1);
data/xppaut-6.11b+1.dfsg/do_fit.c:736:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[6],"%s",fin.collist);
data/xppaut-6.11b+1.dfsg/do_fit.c:737:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[7],"%s",fin.parlist2);
data/xppaut-6.11b+1.dfsg/do_fit.c:747:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fin.file,"%s",values[0]);
data/xppaut-6.11b+1.dfsg/do_fit.c:748:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fin.varlist,"%s",values[1]);
data/xppaut-6.11b+1.dfsg/do_fit.c:749:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fin.parlist1,"%s",values[2]);
data/xppaut-6.11b+1.dfsg/do_fit.c:750:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fin.collist,"%s",values[6]);
data/xppaut-6.11b+1.dfsg/do_fit.c:751:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fin.parlist2,"%s",values[7]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:89:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(sb->value[i],sb->rval[i]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:114:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(sb.name[i],"%s=",names[i]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:115:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(sb.value[i],values[i]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:116:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(sb.rval[i],values[i]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:140:18: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
for(i=0;i<n;i++)strcpy(values[i],sb.value[i]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:357:4: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(names[i],fstr,uvar_names[i]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:358:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(values[i],ode_names[i]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:369:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg,"Bad rhs:%s=%s",names[i],values[i]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:376:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ode_names[i],values[i]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:404:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fundef,"%s(",ufun_names[j]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:406:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(fundef,ufun_arg[j].args[i]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:411:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(fundef,ufun_def[j]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:431:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[i],"%s",ufun_def[i]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:434:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(names[i],"%s()",ufun_names[i]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:437:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(names[i],"%s(%s)",ufun_names[i],
data/xppaut-6.11b+1.dfsg/edit_rhs.c:440:21: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if(narg_fun[i]>1)sprintf(names[i],"%s(%s,...,%s)",ufun_names[i],
data/xppaut-6.11b+1.dfsg/edit_rhs.c:455:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg,"Bad func.:%s=%s",names[i],values[i]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:459:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ufun_def[i],values[i]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:490:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(filename,"%s",this_file);
data/xppaut-6.11b+1.dfsg/eig_list.c:92:6: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(bob,fstr,uvar_names[i],ode_names[i]);
data/xppaut-6.11b+1.dfsg/eig_list.c:404:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(temp,"%s=%.5g",uvar_names[in],eq_box.y[in]);
data/xppaut-6.11b+1.dfsg/endfile.c:10:14: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
extern char *strcpy(char *dest, const char *src);
data/xppaut-6.11b+1.dfsg/endfile.c:75:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(nm,"%s/%s",getenv("HOME"),"tmp.FXXXXXX");
data/xppaut-6.11b+1.dfsg/err.c:72:2: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, curunit->ufnm ? "named %s\n" : "(unnamed)\n",
data/xppaut-6.11b+1.dfsg/extra.c:73:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(dlf.libfile,"%s",dll_lib);
data/xppaut-6.11b+1.dfsg/extra.c:74:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(dlf.libname,"%s/%s",cur_dir,dlf.libfile);
data/xppaut-6.11b+1.dfsg/extra.c:75:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(dlf.fun,"%s",dll_fun);
data/xppaut-6.11b+1.dfsg/extra.c:87:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(dlf.libname,"%s/%s",cur_dir,dlf.libfile);
data/xppaut-6.11b+1.dfsg/extra.c:175:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(in_out.lin,in);
data/xppaut-6.11b+1.dfsg/extra.c:176:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(in_out.lout,out);
data/xppaut-6.11b+1.dfsg/flags.c:127:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(flag[j].cond,cond);
data/xppaut-6.11b+1.dfsg/flags.c:147:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(flag[j].rhs[nevents],temp);
data/xppaut-6.11b+1.dfsg/flags.c:155:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(flag[j].lhsname[nevents],temp);
data/xppaut-6.11b+1.dfsg/form_ode.c:261:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fmat,"%s%d%s","%",lmax+2,"s");
data/xppaut-6.11b+1.dfsg/form_ode.c:280:3: [4] (buffer) scanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
scanf("%s",string);
data/xppaut-6.11b+1.dfsg/form_ode.c:283:5: [4] (buffer) scanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
scanf("%s",filename);
data/xppaut-6.11b+1.dfsg/form_ode.c:291:9: [4] (buffer) scanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
scanf("%s",wild);
data/xppaut-6.11b+1.dfsg/form_ode.c:298:5: [4] (buffer) scanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
scanf("%s",string);
data/xppaut-6.11b+1.dfsg/form_ode.c:352:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(this_file,string);
data/xppaut-6.11b+1.dfsg/form_ode.c:432:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(filename,"%s.new",this_file);
data/xppaut-6.11b+1.dfsg/form_ode.c:488:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(uvar_names[i+NODE+NMarkov],aux_names[i]);
data/xppaut-6.11b+1.dfsg/form_ode.c:508:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(prim,"%s'",uvar_names[i]);
data/xppaut-6.11b+1.dfsg/form_ode.c:623:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(condition,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:626:12: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(formula,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:676:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(condition,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:679:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(formula,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:697:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(upar_names[NUPAR++],name);
data/xppaut-6.11b+1.dfsg/form_ode.c:712:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(options,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:722:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:728:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(uvar_names[IN_VARS+NMarkov],name);
data/xppaut-6.11b+1.dfsg/form_ode.c:738:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:744:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(formula,save_eqn[nlin]);
data/xppaut-6.11b+1.dfsg/form_ode.c:746:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ode_names[IN_VARS+index],"{ %s ... }",formula);
data/xppaut-6.11b+1.dfsg/form_ode.c:773:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(uvar_names[IN_VARS],name);
data/xppaut-6.11b+1.dfsg/form_ode.c:782:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fixname[FIX_VAR],name);
data/xppaut-6.11b+1.dfsg/form_ode.c:800:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(my_bc[BVP_N].string,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:815:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:819:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(formula,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:833:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:844:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(formula,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:867:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(formula,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:876:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(formula,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:892:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:896:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(formula,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:922:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(formula,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:936:11: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ode_names[NODE],formula);
data/xppaut-6.11b+1.dfsg/form_ode.c:967:11: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ode_names[NODE-FIX_VAR+NMarkov],formula);
data/xppaut-6.11b+1.dfsg/form_ode.c:989:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(aux_names[Naux],my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:1056:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name,bob);
data/xppaut-6.11b+1.dfsg/form_ode.c:1079:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name,bob);
data/xppaut-6.11b+1.dfsg/form_ode.c:1171:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(string,new);
data/xppaut-6.11b+1.dfsg/form_ode.c:1184:2: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system("clear");
data/xppaut-6.11b+1.dfsg/form_ode.c:1373:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(old,first); /* pass the first line .... */
data/xppaut-6.11b+1.dfsg/form_ode.c:1419:12: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(strings[0],new);
data/xppaut-6.11b+1.dfsg/form_ode.c:1428:14: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(strings[nstrings],old);
data/xppaut-6.11b+1.dfsg/form_ode.c:1441:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new,strings[ns]);
data/xppaut-6.11b+1.dfsg/form_ode.c:1455:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:1477:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:1502:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(markovarrays[istates],strings[ns+1+istates]);
data/xppaut-6.11b+1.dfsg/form_ode.c:1516:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(v.lhs,name);
data/xppaut-6.11b+1.dfsg/form_ode.c:1526:14: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(v.lhs,v.rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1532:11: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(big,v.rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1544:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(big,v.rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1554:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(big,v.rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1564:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(big,v.rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1582:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(big,v.rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1598:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(big,v.rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1675:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(onlylist[N_only],s);
data/xppaut-6.11b+1.dfsg/form_ode.c:1740:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"par %s \n",v->rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1744:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"wie %s \n",v->rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1748:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"num %s \n",v->rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1752:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"c %s \n",v->rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1757:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"x %s\n",v->rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1762:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"b %s \n",v->rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1766:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"g %s \n",v->rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1772:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(vnames[nvar],tmp);
data/xppaut-6.11b+1.dfsg/form_ode.c:1787:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(mnames[nmark],tmp);
data/xppaut-6.11b+1.dfsg/form_ode.c:1807:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(anames[naux],tmp);
data/xppaut-6.11b+1.dfsg/form_ode.c:1818:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fixinfo[nfix].name,v->lhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1819:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fixinfo[nfix].value,v->rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1821:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fnames[nfix],tmp);
data/xppaut-6.11b+1.dfsg/form_ode.c:1862:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(uvar_names[i],vnames[i]);
data/xppaut-6.11b+1.dfsg/form_ode.c:1877:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(uvar_names[i+nvar],mnames[i]);
data/xppaut-6.11b+1.dfsg/form_ode.c:1882:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(aux_names[i],anames[i]);
data/xppaut-6.11b+1.dfsg/form_ode.c:1911:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"i %s \n",v->rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1966:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(delay_string[in],v->rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:2002:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ode_names[nvar],v->rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:2048:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ode_names[in1],v->rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:2089:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"t %s %s ",v->lhs,v->rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:2103:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(formula,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:2117:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(formula,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:2126:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(formula,my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:2203:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s1old,s1);
data/xppaut-6.11b+1.dfsg/form_ode.c:2216:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(v->lhs,lhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:2217:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(v->rhs,rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:2326:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(v->lhs,lhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:2327:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(v->rhs,rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:2330:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(v->args[i],args[i]);
data/xppaut-6.11b+1.dfsg/form_ode.c:2369:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(v->lhs,lhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:2370:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(v->rhs,rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:2372:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(v->args[i],args[i]);
data/xppaut-6.11b+1.dfsg/form_ode.c:2383:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(vnew->lhs,lhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:2384:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(vnew->rhs,rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:2386:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(vnew->args[i],args[i]);
data/xppaut-6.11b+1.dfsg/form_ode.c:2601:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(s,temp);
data/xppaut-6.11b+1.dfsg/form_ode.c:2635:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new,old);
data/xppaut-6.11b+1.dfsg/form_ode.c:2642:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new,old);
data/xppaut-6.11b+1.dfsg/form_ode.c:2670:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new,old);
data/xppaut-6.11b+1.dfsg/form_ode.c:2692:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new,old);
data/xppaut-6.11b+1.dfsg/form_ode.c:2781:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new,big);
data/xppaut-6.11b+1.dfsg/form_ode.c:2901:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(orig_comments[i].text,comments[i].text);
data/xppaut-6.11b+1.dfsg/form_ode.c:2903:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(orig_comments[i].action,comments[i].action);
data/xppaut-6.11b+1.dfsg/form_ode.c:2917:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(comments[i].text,orig_comments[i].text);
data/xppaut-6.11b+1.dfsg/form_ode.c:2920:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(comments[i].action,orig_comments[i].action);
data/xppaut-6.11b+1.dfsg/form_ode.c:2945:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ted,"@%s",bob);
data/xppaut-6.11b+1.dfsg/form_ode.c:2968:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(comments[n_comments].text,s+1);
data/xppaut-6.11b+1.dfsg/form_ode.c:3001:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(comments[n_comments].text,text);
data/xppaut-6.11b+1.dfsg/form_ode.c:3003:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(comments[n_comments].action,action);
data/xppaut-6.11b+1.dfsg/ggets.c:156:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(info_message,msg);
data/xppaut-6.11b+1.dfsg/ggets.c:197:8: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
nchar=vfprintf(logfile,fmt,arglist);
data/xppaut-6.11b+1.dfsg/ggets.c:311:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(string,new);
data/xppaut-6.11b+1.dfsg/ggets.c:691:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(old_value,value);
data/xppaut-6.11b+1.dfsg/ggets.c:700:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(value,old_value);
data/xppaut-6.11b+1.dfsg/ggetsold.c:139:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(info_message,msg);
data/xppaut-6.11b+1.dfsg/ggetsold.c:269:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(string,new);
data/xppaut-6.11b+1.dfsg/ggetsold.c:649:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(old_value,value);
data/xppaut-6.11b+1.dfsg/ggetsold.c:658:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(value,old_value);
data/xppaut-6.11b+1.dfsg/graf_par.c:117:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else strcpy(str,uvar_names[ind-1]);
data/xppaut-6.11b+1.dfsg/graf_par.c:141:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",n1);
data/xppaut-6.11b+1.dfsg/graf_par.c:142:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[1],"%s",n2);
data/xppaut-6.11b+1.dfsg/graf_par.c:147:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[6],"%s",MyGraph->xlabel);
data/xppaut-6.11b+1.dfsg/graf_par.c:148:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[7],"%s",MyGraph->ylabel);
data/xppaut-6.11b+1.dfsg/graf_par.c:168:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(MyGraph->xlabel,"%s",values[6]);
data/xppaut-6.11b+1.dfsg/graf_par.c:169:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(MyGraph->ylabel,"%s",values[7]);
data/xppaut-6.11b+1.dfsg/graf_par.c:222:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",n1);
data/xppaut-6.11b+1.dfsg/graf_par.c:223:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[1],"%s",n2);
data/xppaut-6.11b+1.dfsg/graf_par.c:224:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[2],"%s",n3);
data/xppaut-6.11b+1.dfsg/graf_par.c:235:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[13],"%s",MyGraph->xlabel);
data/xppaut-6.11b+1.dfsg/graf_par.c:236:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[14],"%s",MyGraph->ylabel);
data/xppaut-6.11b+1.dfsg/graf_par.c:237:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[15],"%s",MyGraph->zlabel);
data/xppaut-6.11b+1.dfsg/graf_par.c:251:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(MyGraph->xlabel,"%s",values[13]);
data/xppaut-6.11b+1.dfsg/graf_par.c:252:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(MyGraph->ylabel,"%s",values[14]);
data/xppaut-6.11b+1.dfsg/graf_par.c:253:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(MyGraph->zlabel,"%s",values[15]);
data/xppaut-6.11b+1.dfsg/graf_par.c:679:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[5],"%s",mov3d.yes);
data/xppaut-6.11b+1.dfsg/graf_par.c:680:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[6],"%s",mov3d.angle);
data/xppaut-6.11b+1.dfsg/graf_par.c:693:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(mov3d.yes,values[5]);
data/xppaut-6.11b+1.dfsg/graf_par.c:694:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(mov3d.angle,values[6]);
data/xppaut-6.11b+1.dfsg/graf_par.c:733:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[2],"%s",mov3d.yes);
data/xppaut-6.11b+1.dfsg/graf_par.c:734:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[3],"%s",mov3d.angle);
data/xppaut-6.11b+1.dfsg/graf_par.c:747:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(mov3d.yes,values[2]);
data/xppaut-6.11b+1.dfsg/graf_par.c:748:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(mov3d.angle,values[3]);
data/xppaut-6.11b+1.dfsg/graf_par.c:966:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",n1);
data/xppaut-6.11b+1.dfsg/graf_par.c:967:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[1],"%s",n2);
data/xppaut-6.11b+1.dfsg/graf_par.c:968:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[2],"%s",n3);
data/xppaut-6.11b+1.dfsg/graf_par.c:1025:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[3],"%s",PS_FONT);
data/xppaut-6.11b+1.dfsg/graf_par.c:1033:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(PS_FONT,"%s",values[3]);
data/xppaut-6.11b+1.dfsg/graf_par.c:1034:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(filename,"%s.ps",this_file);
data/xppaut-6.11b+1.dfsg/graf_par.c:1236:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(frz[i].key,"%s",frz[i].name);
data/xppaut-6.11b+1.dfsg/graf_par.c:1252:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[1],"%s",frz[i].key);
data/xppaut-6.11b+1.dfsg/graf_par.c:1253:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[2],"%s",frz[i].name);
data/xppaut-6.11b+1.dfsg/graf_par.c:1257:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(frz[i].key,"%s",values[1]);
data/xppaut-6.11b+1.dfsg/graf_par.c:1258:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(frz[i].name,"%s",values[2]);
data/xppaut-6.11b+1.dfsg/graf_par.c:1456:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(n[count],"%s",frz[i].name);
data/xppaut-6.11b+1.dfsg/histogram.c:373:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(variable,uvar_names[*col-1]);
data/xppaut-6.11b+1.dfsg/init_condold.c:147:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(sl->v[n],v);
data/xppaut-6.11b+1.dfsg/init_condold.c:275:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(values[0],p->parname);
data/xppaut-6.11b+1.dfsg/init_condold.c:300:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(p->parname,values[0]);
data/xppaut-6.11b+1.dfsg/init_condold.c:449:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(top,"%s=%.16g",p->parname,p->val);
data/xppaut-6.11b+1.dfsg/init_condold.c:944:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(name,"%s :",uvar_names[index]);
data/xppaut-6.11b+1.dfsg/init_condold.c:973:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(value,"%s :",name);
data/xppaut-6.11b+1.dfsg/init_condold.c:1173:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(b->value[i],string);
data/xppaut-6.11b+1.dfsg/init_condold.c:1241:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(my_bc[i].string,s);
data/xppaut-6.11b+1.dfsg/init_condold.c:1245:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(delay_string[i],s);
data/xppaut-6.11b+1.dfsg/init_conds.c:175:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(sl->v[n],v);
data/xppaut-6.11b+1.dfsg/init_conds.c:386:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(values[0],p->parname);
data/xppaut-6.11b+1.dfsg/init_conds.c:420:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(p->parname,values[0]);
data/xppaut-6.11b+1.dfsg/init_conds.c:494:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(t," %s",f.title);
data/xppaut-6.11b+1.dfsg/init_conds.c:497:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(t,"%s - %s",f.wildtxt,cur_dir);
data/xppaut-6.11b+1.dfsg/init_conds.c:508:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(t,"<>%s",my_ff.dirnames[i0]);
data/xppaut-6.11b+1.dfsg/init_conds.c:510:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(t,"%s",my_ff.filenames[i0-my_ff.ndirs]);
data/xppaut-6.11b+1.dfsg/init_conds.c:584:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filesel.filetxt,cur_dir);
data/xppaut-6.11b+1.dfsg/init_conds.c:602:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filesel.filetxt,my_ff.filenames[k]);
data/xppaut-6.11b+1.dfsg/init_conds.c:682:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filesel.title,title);
data/xppaut-6.11b+1.dfsg/init_conds.c:683:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filesel.wildtxt,wild);
data/xppaut-6.11b+1.dfsg/init_conds.c:684:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filesel.filetxt,file);
data/xppaut-6.11b+1.dfsg/init_conds.c:869:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filesel.filetxt,cur_dir);
data/xppaut-6.11b+1.dfsg/init_conds.c:883:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ft,filesel.filetxt);
data/xppaut-6.11b+1.dfsg/init_conds.c:918:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ftpath,filesel.filetxt);
data/xppaut-6.11b+1.dfsg/init_conds.c:939:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filesel.filetxt,cur_dir);
data/xppaut-6.11b+1.dfsg/init_conds.c:958:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(U,my_ff.dirnames[0]);
data/xppaut-6.11b+1.dfsg/init_conds.c:962:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(U,my_ff.filenames[0]);
data/xppaut-6.11b+1.dfsg/init_conds.c:981:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filesel.filetxt,ftpath);
data/xppaut-6.11b+1.dfsg/init_conds.c:982:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(filesel.filetxt,U);
data/xppaut-6.11b+1.dfsg/init_conds.c:1079:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,filesel.filetxt);
data/xppaut-6.11b+1.dfsg/init_conds.c:1248:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(top,"%s=%.16g",p->parname,p->val);
data/xppaut-6.11b+1.dfsg/init_conds.c:1615:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(b->iname,iname);
data/xppaut-6.11b+1.dfsg/init_conds.c:1617:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(b->wname,wname);
data/xppaut-6.11b+1.dfsg/init_conds.c:2141:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(name,"%s :",uvar_names[index]);
data/xppaut-6.11b+1.dfsg/init_conds.c:2183:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(value,"%s :",name);
data/xppaut-6.11b+1.dfsg/init_conds.c:2420:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(b->value[i],string);
data/xppaut-6.11b+1.dfsg/init_conds.c:2502:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(my_bc[i].string,s);
data/xppaut-6.11b+1.dfsg/init_conds.c:2506:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(delay_string[i],s);
data/xppaut-6.11b+1.dfsg/integrate.c:257:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(eq_range.item,"%s",upar_names[0]);
data/xppaut-6.11b+1.dfsg/integrate.c:292:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(range.item,"%s",uvar_names[0]);
data/xppaut-6.11b+1.dfsg/integrate.c:295:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(range.item2,"%s",uvar_names[0]);
data/xppaut-6.11b+1.dfsg/integrate.c:308:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",eq_range.item);
data/xppaut-6.11b+1.dfsg/integrate.c:312:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[4],"%s",yn[eq_range.shoot]);
data/xppaut-6.11b+1.dfsg/integrate.c:314:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[6],"%s",yn[eq_range.movie]);
data/xppaut-6.11b+1.dfsg/integrate.c:319:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(eq_range.item,values[0]);
data/xppaut-6.11b+1.dfsg/integrate.c:377:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(bob," %s is not a parameter or variable !",range.item);
data/xppaut-6.11b+1.dfsg/integrate.c:399:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(bob," %s is not a parameter or variable !",range.item2);
data/xppaut-6.11b+1.dfsg/integrate.c:423:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",range.item);
data/xppaut-6.11b+1.dfsg/integrate.c:427:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[4],"%s",yn[range.reset]);
data/xppaut-6.11b+1.dfsg/integrate.c:428:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[5],"%s",yn[range.oldic]);
data/xppaut-6.11b+1.dfsg/integrate.c:429:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[6],"%s",yn[range.cycle]);
data/xppaut-6.11b+1.dfsg/integrate.c:430:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[7],"%s",yn[range.movie]);
data/xppaut-6.11b+1.dfsg/integrate.c:434:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(range.item,values[0]);
data/xppaut-6.11b+1.dfsg/integrate.c:486:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",range.item);
data/xppaut-6.11b+1.dfsg/integrate.c:489:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[3],"%s",range.item2);
data/xppaut-6.11b+1.dfsg/integrate.c:493:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[7],"%s",yn[range.reset]);
data/xppaut-6.11b+1.dfsg/integrate.c:494:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[8],"%s",yn[range.oldic]);
data/xppaut-6.11b+1.dfsg/integrate.c:495:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[9],"%s",yn[range.cycle]);
data/xppaut-6.11b+1.dfsg/integrate.c:496:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[10],"%s",yn[range.movie]);
data/xppaut-6.11b+1.dfsg/integrate.c:504:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(range.item,values[0]);
data/xppaut-6.11b+1.dfsg/integrate.c:507:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(range.item2,values[3]);
data/xppaut-6.11b+1.dfsg/integrate.c:558:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(name,"%s_lo :",uvar_names[i]);
data/xppaut-6.11b+1.dfsg/integrate.c:564:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(name,"%s_hi :",uvar_names[i]);
data/xppaut-6.11b+1.dfsg/integrate.c:688:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(bob,"%s=%.16g",eq_range.item,temp);
data/xppaut-6.11b+1.dfsg/integrate.c:830:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(bob,"%s=%.16g %s=%.16g",range.item,p,range.item2,p2);
data/xppaut-6.11b+1.dfsg/integrate.c:832:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(bob,"%s=%.16g i=%d",range.item,p,i);
data/xppaut-6.11b+1.dfsg/integrate.c:971:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(batchout,"%s.dat",intern_set[i].name);
data/xppaut-6.11b+1.dfsg/integrate.c:976:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(batchout,"%s",UserOUTFILE);
data/xppaut-6.11b+1.dfsg/integrate.c:1115:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(outfile,"%s.%d",file,i);
data/xppaut-6.11b+1.dfsg/integrate.c:1416:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ar_ic[ihot].var,new);
data/xppaut-6.11b+1.dfsg/integrate.c:1453:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ar_ic[ihot].var,new);
data/xppaut-6.11b+1.dfsg/integrate.c:1458:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ar_ic[ihot].formula,formula);
data/xppaut-6.11b+1.dfsg/integrate.c:2071:14: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(error_message," %s is NaN at t = %f ",
data/xppaut-6.11b+1.dfsg/integrate.c:2101:14: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(error_message," %s out of bounds at t = %f ",
data/xppaut-6.11b+1.dfsg/kinescope.c:243:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(file,"%s_%d.ppm",basename,i);
data/xppaut-6.11b+1.dfsg/kinescope.c:245:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(file,"%s_%d.gif",basename,i);
data/xppaut-6.11b+1.dfsg/kinescope_avi.c:217:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(file,"%s_%d.ppm",basename,i);
data/xppaut-6.11b+1.dfsg/kinescope_avi.c:219:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(file,"%s_%d.gif",basename,i);
data/xppaut-6.11b+1.dfsg/lbf_drive.c:59:2: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system("rm storef.dat");
data/xppaut-6.11b+1.dfsg/lbf_drive.c:60:2: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system("rm init.dat");
data/xppaut-6.11b+1.dfsg/lbf_drive.c:61:2: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system("rm storef1.dat");
data/xppaut-6.11b+1.dfsg/lbf_drive.c:62:2: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system("rm ts.dat");
data/xppaut-6.11b+1.dfsg/load_eqn.c:370:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(odeclassrm,"%s",getenv("XPPSTART"));
data/xppaut-6.11b+1.dfsg/load_eqn.c:467:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(UserBlack,"#%s","000000");
data/xppaut-6.11b+1.dfsg/load_eqn.c:472:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(UserWhite,"#%s","EDE9E3");
data/xppaut-6.11b+1.dfsg/load_eqn.c:477:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(UserMainWinColor,"#%s","808080");
data/xppaut-6.11b+1.dfsg/load_eqn.c:482:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(UserDrawWinColor,"#%s","FFFFFF");
data/xppaut-6.11b+1.dfsg/load_eqn.c:657:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(big_font_name,ptr);
data/xppaut-6.11b+1.dfsg/load_eqn.c:666:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(small_font_name,ptr);
data/xppaut-6.11b+1.dfsg/load_eqn.c:739:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(intern_set[j].name,name);
data/xppaut-6.11b+1.dfsg/load_eqn.c:759:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(intern_set[j].does,bob);
data/xppaut-6.11b+1.dfsg/load_eqn.c:772:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmp,ptr);
data/xppaut-6.11b+1.dfsg/load_eqn.c:926:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(intrnoptcpy,interopt[i]);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1002:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name,bob);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1022:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(rc,"%s/.xpprc",getenv("HOME"));
data/xppaut-6.11b+1.dfsg/load_eqn.c:1046:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(interopt[Nopts],"%s",s1);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1102:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(big_font_name,s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1110:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(small_font_name,s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1118:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(UserBlack,"#%s",s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1126:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(UserWhite,"#%s",s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1134:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(UserMainWinColor,"#%s",s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1142:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(UserDrawWinColor,"#%s",s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1163:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(UserBGBitmap,s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1296:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(dll_lib,"%s",s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1305:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(dll_fun,"%s",s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1714:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(batchout,s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1759:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(range.item,s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:2049:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(PS_FONT,s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:200:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(odeclassrm,"%s",getenv("XPPSTART"));
data/xppaut-6.11b+1.dfsg/load_eqnold.c:286:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(UserBlack,"#%s","000000");
data/xppaut-6.11b+1.dfsg/load_eqnold.c:287:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(UserWhite,"#%s","EDE9E3");
data/xppaut-6.11b+1.dfsg/load_eqnold.c:288:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(UserMainWinColor,"#%s","808080");
data/xppaut-6.11b+1.dfsg/load_eqnold.c:289:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(UserDrawWinColor,"#%s","FFFFFF");
data/xppaut-6.11b+1.dfsg/load_eqnold.c:443:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(big_font_name,ptr);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:447:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(small_font_name,ptr);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:517:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(intern_set[j].name,name);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:537:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(intern_set[j].does,bob);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:550:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmp,ptr);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:664:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name,bob);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:680:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(rc,"%s/.xpprc",getenv("HOME"));
data/xppaut-6.11b+1.dfsg/load_eqnold.c:702:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(interopt[Nopts],"%s",s1);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:726:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(big_font_name,s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:730:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(small_font_name,s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:734:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(UserBlack,"#%s",s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:738:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(UserWhite,"#%s",s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:742:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(UserMainWinColor,"#%s",s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:746:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(UserDrawWinColor,"#%s",s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:754:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(UserBGBitmap,s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:823:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(dll_lib,"%s",s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:828:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(dll_fun,"%s",s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1042:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(batchout,s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1067:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(range.item,s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1225:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(PS_FONT,s2);
data/xppaut-6.11b+1.dfsg/lunch-new.c:61:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(filename,"%s.pars",this_file);
data/xppaut-6.11b+1.dfsg/lunch-new.c:113:6: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp,fstr,uvar_names[i],ode_names[i]);
data/xppaut-6.11b+1.dfsg/lunch-new.c:141:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else strcpy(bob,uvar_names[POIVAR-1]);
data/xppaut-6.11b+1.dfsg/lunch-new.c:223:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(filename,"%s.set",this_file);
data/xppaut-6.11b+1.dfsg/lunch-new.c:307:6: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp,fstr,uvar_names[i],ode_names[i]);
data/xppaut-6.11b+1.dfsg/lunch.c:50:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(filename,"%s.pars",this_file);
data/xppaut-6.11b+1.dfsg/lunch.c:79:6: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp,fstr,uvar_names[i],ode_names[i]);
data/xppaut-6.11b+1.dfsg/lunch.c:107:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else strcpy(bob,uvar_names[POIVAR-1]);
data/xppaut-6.11b+1.dfsg/lunch.c:150:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(filename,"%s.set",this_file);
data/xppaut-6.11b+1.dfsg/main.c:400:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(pptitle,"XPP Ver %g.%g >> %s",xppvermaj,xppvermin,this_file);
data/xppaut-6.11b+1.dfsg/main.c:658:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(swapcol,UserWhite);
data/xppaut-6.11b+1.dfsg/main.c:659:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(UserWhite,UserBlack);
data/xppaut-6.11b+1.dfsg/main.c:660:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(UserBlack,swapcol);
data/xppaut-6.11b+1.dfsg/mainold.c:178:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(pptitle,"XPP Ver %g.%g >> %s",xppvermaj,xppvermin,this_file);
data/xppaut-6.11b+1.dfsg/mainold.c:375:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(swapcol,UserWhite);
data/xppaut-6.11b+1.dfsg/mainold.c:376:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(UserWhite,UserBlack);
data/xppaut-6.11b+1.dfsg/mainold.c:377:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(UserBlack,swapcol);
data/xppaut-6.11b+1.dfsg/many_pops.c:137:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(n[i],"%c: %s",key[i],my_table[i].name);
data/xppaut-6.11b+1.dfsg/many_pops.c:162:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(n[i],"%c: %s",key[i],intern_set[i].name);
data/xppaut-6.11b+1.dfsg/many_pops.c:270:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(lb[i].s,s);
data/xppaut-6.11b+1.dfsg/many_pops.c:684:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(str,"Move %s ?", lb[ilab].s);
data/xppaut-6.11b+1.dfsg/many_pops.c:704:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(str,"Change %s ?", lb[ilab].s);
data/xppaut-6.11b+1.dfsg/many_pops.c:717:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(str,"Delete %s ?", lb[ilab].s);
data/xppaut-6.11b+1.dfsg/many_pops.c:1301:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(MyGraph->gr_info,buf);
data/xppaut-6.11b+1.dfsg/markov.c:153:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(line,"%s",ma[i]);
data/xppaut-6.11b+1.dfsg/markov.c:279:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(markov[j].name,name);
data/xppaut-6.11b+1.dfsg/markov.c:294:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(markov[index].trans[l0],expr);
data/xppaut-6.11b+1.dfsg/menu.c:47:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(my_menus[j].key,key);
data/xppaut-6.11b+1.dfsg/menudrive.c:93:3: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(editor,ed);
data/xppaut-6.11b+1.dfsg/menudrive.c:100:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(rc,"%s/.xpprc",getenv("HOME"));
data/xppaut-6.11b+1.dfsg/menudrive.c:103:10: [4] (shell) execvp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execvp(editor,args);
data/xppaut-6.11b+1.dfsg/menudrive.c:143:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmd,"file:///%s",helpPath);
data/xppaut-6.11b+1.dfsg/menudrive.c:147:12: [4] (shell) execlp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execlp(getenv("XPPBROWSER"),getenv("XPPHELP"),cmd,(char *)0);
data/xppaut-6.11b+1.dfsg/menudrive.c:170:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(MsgBox.text,m);
data/xppaut-6.11b+1.dfsg/nullcline.c:100:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",ncrange.rv);
data/xppaut-6.11b+1.dfsg/nullcline.c:106:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ncrange.rv,values[0]);
data/xppaut-6.11b+1.dfsg/nullcline.c:260:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fnx,"%s.%d",fn,i);
data/xppaut-6.11b+1.dfsg/numerics.c:442:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",n1);
data/xppaut-6.11b+1.dfsg/numerics.c:445:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[3],"%s",yn[SOS]);
data/xppaut-6.11b+1.dfsg/open.c:71:6: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if(access(buf,0))
data/xppaut-6.11b+1.dfsg/open.c:79:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf,"%s/%s",getenv("HOME"),"tmp.FXXXXXX");
data/xppaut-6.11b+1.dfsg/open.c:92:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(b->ufnm,buf);
data/xppaut-6.11b+1.dfsg/parser2.c:618:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(kernel[NKernel].expr,expr);
data/xppaut-6.11b+1.dfsg/parser2.c:844:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(my_symb[FIRST_ARG+i].name,args[i]);
data/xppaut-6.11b+1.dfsg/parser2.c:882:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ufun_names[index],name);
data/xppaut-6.11b+1.dfsg/parser2.c:910:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ufun_arg[index].args[i],args[i]);
data/xppaut-6.11b+1.dfsg/parser2.c:925:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ufun_def[index],rhs);
data/xppaut-6.11b+1.dfsg/parser2.c:988:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ufun_def[NFUN],expr);
data/xppaut-6.11b+1.dfsg/parser2.c:991:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ufun_names[NFUN],junk);
data/xppaut-6.11b+1.dfsg/parserslow2.c:478:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(kernel[NKernel].expr,expr);
data/xppaut-6.11b+1.dfsg/parserslow2.c:667:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(my_symb[FIRST_ARG+i].name,args[i]);
data/xppaut-6.11b+1.dfsg/parserslow2.c:697:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ufun_names[index],name);
data/xppaut-6.11b+1.dfsg/parserslow2.c:734:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ufun_arg[index].args[i],args[i]);
data/xppaut-6.11b+1.dfsg/parserslow2.c:742:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ufun_def[index],rhs);
data/xppaut-6.11b+1.dfsg/parserslow2.c:797:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ufun_def[NFUN],expr);
data/xppaut-6.11b+1.dfsg/parserslow2.c:800:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ufun_names[NFUN],junk);
data/xppaut-6.11b+1.dfsg/pop_list.c:38:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(scrbox_list[0].list[i+1],uvar_names[i]);
data/xppaut-6.11b+1.dfsg/pop_list.c:45:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(scrbox_list[1].list[i],uvar_names[i]);
data/xppaut-6.11b+1.dfsg/pop_list.c:53:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(scrbox_list[2].list[i],upar_names[i]);
data/xppaut-6.11b+1.dfsg/pop_list.c:62:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(scrbox_list[3].list[i],uvar_names[i]);
data/xppaut-6.11b+1.dfsg/pop_list.c:66:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(scrbox_list[3].list[i],upar_names[i-NODE-NMarkov]);
data/xppaut-6.11b+1.dfsg/pop_list.c:73:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(scrbox_list[4].list[i],"%d %s",i,color_names[i]);
data/xppaut-6.11b+1.dfsg/pop_list.c:91:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(scrbox_list[6].list[i],"%d %s",i,method[i]);
data/xppaut-6.11b+1.dfsg/pop_list.c:254:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(sb.name[i],"*%s:",names[i]+2);
data/xppaut-6.11b+1.dfsg/pop_list.c:257:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(sb.name[i],"%s:",names[i]);
data/xppaut-6.11b+1.dfsg/pop_list.c:258:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(sb.value[i],values[i]);
data/xppaut-6.11b+1.dfsg/pop_list.c:280:19: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
for(i=0;i<n;i++)strcpy(values[i],sb.value[i]);
data/xppaut-6.11b+1.dfsg/pop_list.c:361:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(sb->value[i],scrbox_list[id].list[item]);
data/xppaut-6.11b+1.dfsg/pop_list.c:1083:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(httxt,hints[i]);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:190:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(shoot_range.item,s);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:260:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(bob,"%s=%.16g",shoot_range.item,temp);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:298:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",uvar_names[my_hom.eleft]);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:299:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[1],"%s",uvar_names[my_hom.eright]);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:339:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",upar_names[*ipar]);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:340:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[1],"%s",uvar_names[*ivar]);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:342:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[3],"%s",yn[*ishow]);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:479:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[0],"%s",shoot_range.item);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:483:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[4],"%s",yn[shoot_range.cycle]);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:485:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(values[6],"%s",yn[shoot_range.movie]);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:489:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(shoot_range.item,values[0]);
data/xppaut-6.11b+1.dfsg/read_dir.c:138:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ff->dirnames[nd],dp->d_name);
data/xppaut-6.11b+1.dfsg/read_dir.c:144:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ff->filenames[nf],dp->d_name);
data/xppaut-6.11b+1.dfsg/read_dir.c:191:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ff->dirnames[nd],dp->d_name);
data/xppaut-6.11b+1.dfsg/read_dir.c:196:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ff->filenames[nf],dp->d_name);
data/xppaut-6.11b+1.dfsg/read_dir.c:332:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(pathname, root);
data/xppaut-6.11b+1.dfsg/read_dir.c:334:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(pathname, filename);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:235:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r->formula,f);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:245:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r->f,f);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:247:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r->tc,tc);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:249:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r->v,v);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:273:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(par[Npar].name,name);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:278:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(par[Npar].id,id);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:311:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x->ev,ev);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:322:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"%s=%s",variable,formula);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:324:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x->a[j],big);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:355:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(f->name,name);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:363:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(f->arg[0],sa);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:368:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(f->arg[j],sa);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:377:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(f->formula,formula);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:457:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r->re[j],name);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:466:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r->pr[j],name);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:550:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x->name,name);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:559:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x->id,id);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:565:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(x->tc,tc);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:957:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(long_names[lnum].src,s);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:960:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(long_names[lnum].rep,"%s.%d",x,lnum);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1028:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(z,big);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1031:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(z,zp);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1033:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(bigp,z);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1062:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fname,"%s.ode",base);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1079:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"%s(",fn->name);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1081:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(tmp,"%s,",fn->arg[j]);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1082:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(big,tmp);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1084:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(tmp,"%s)=%s",fn->arg[na-1],fn->formula);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1085:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(big,tmp);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1093:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"%s=%s",r->v,r->f);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1104:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"par %s=%g",par[i].id,par[i].z);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1106:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"par %s=%g",par[i].name,par[i].z);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1115:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"%s=%g",x->id,x->x0);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1117:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"%s=%g",x->name,x->x0);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1121:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"init %s=%g",x->id,x->x0);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1123:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"init %s=%g",x->name,x->x0);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1131:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"Rxn%d=%s",i+1,rx->formula);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1143:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"d%s/dt=",x->id);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1145:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"d%s/dt=",x->name);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1148:34: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
if(j>0){sprintf(tmp," + ");strcat(big,tmp);}
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1150:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(big,tmp);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1154:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(big,tmp);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1163:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(big,"global 1 %s {",ev->ev);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1166:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(tmp,"%s;",ev->a[j]);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1167:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(big,tmp);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1169:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(tmp,"%s}",ev->a[na-1]);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1170:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(big,tmp);
data/xppaut-6.11b+1.dfsg/simplenet.c:242:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(wgtname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:250:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rootname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:287:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(wgtname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:297:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(indname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:306:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rootname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:353:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(wgtname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:363:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rootname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:372:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(root2name,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:380:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:381:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(junk,"%s(%s,%s)",fname,rootname,root2name);
data/xppaut-6.11b+1.dfsg/simplenet.c:416:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(wgtname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:426:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(indname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:437:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rootname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:449:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(root2name,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:457:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:458:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(junk,"%s(%s,%s)",fname,rootname,root2name);
data/xppaut-6.11b+1.dfsg/simplenet.c:498:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(wgtname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:515:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rootname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:562:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(wgtname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:572:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rootname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:612:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(wgtname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:622:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rootname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:632:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(root2name,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:640:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:641:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(junk,"%s(%s,%s)",fname,rootname,root2name);
data/xppaut-6.11b+1.dfsg/simplenet.c:675:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rootname,str);
data/xppaut-6.11b+1.dfsg/simplenet.c:753:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(my_net[n_network].name,name);
data/xppaut-6.11b+1.dfsg/simplenet.c:1112:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(bn,"%s%d",b,id+i1);
data/xppaut-6.11b+1.dfsg/simplenet.c:1149:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(root,s);
data/xppaut-6.11b+1.dfsg/tabular.c:107:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(my_table[index].name,name);
data/xppaut-6.11b+1.dfsg/tabular.c:141:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,my_table[index].filename);
data/xppaut-6.11b+1.dfsg/tabular.c:145:15: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if(ok==1)strcpy(my_table[index].filename,file);
data/xppaut-6.11b+1.dfsg/tabular.c:153:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newform,my_table[index].filename);
data/xppaut-6.11b+1.dfsg/tabular.c:182:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,my_table[index].filename);
data/xppaut-6.11b+1.dfsg/tabular.c:185:12: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if(ok==1)strcpy(my_table[index].filename,file);
data/xppaut-6.11b+1.dfsg/tabular.c:193:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newform,my_table[index].filename);
data/xppaut-6.11b+1.dfsg/tabular.c:378:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(my_table[index].filename,formula);
data/xppaut-6.11b+1.dfsg/tabular.c:453:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(my_table[index].filename,filename);
data/xppaut-6.11b+1.dfsg/torus.c:88:16: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if(itor[i]==1)sprintf(strng,"X %s",uvar_names[i]);
data/xppaut-6.11b+1.dfsg/torus.c:89:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
else sprintf(strng," %s",uvar_names[i]);
data/xppaut-6.11b+1.dfsg/userbut.c:144:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(userbut[nuserbut].bname,bname);
data/xppaut-6.11b+1.dfsg/auto_nox.c:442:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char* HOME = getenv("HOME");
data/xppaut-6.11b+1.dfsg/endfile.c:75:21: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
sprintf(nm,"%s/%s",getenv("HOME"),"tmp.FXXXXXX");
data/xppaut-6.11b+1.dfsg/load_eqn.c:367:7: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("XPPSTART")!=NULL)
data/xppaut-6.11b+1.dfsg/load_eqn.c:370:28: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
sprintf(odeclassrm,"%s",getenv("XPPSTART"));
data/xppaut-6.11b+1.dfsg/load_eqn.c:1022:26: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
sprintf(rc,"%s/.xpprc",getenv("HOME"));
data/xppaut-6.11b+1.dfsg/load_eqnold.c:198:7: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("XPPSTART")!=NULL)
data/xppaut-6.11b+1.dfsg/load_eqnold.c:200:28: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
sprintf(odeclassrm,"%s",getenv("XPPSTART"));
data/xppaut-6.11b+1.dfsg/load_eqnold.c:680:26: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
sprintf(rc,"%s/.xpprc",getenv("HOME"));
data/xppaut-6.11b+1.dfsg/main.c:586:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *getenv();
data/xppaut-6.11b+1.dfsg/mainold.c:337:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *getenv();
data/xppaut-6.11b+1.dfsg/menudrive.c:71:7: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *getenv();
data/xppaut-6.11b+1.dfsg/menudrive.c:83:13: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char* ed = getenv("XPPEDITOR");
data/xppaut-6.11b+1.dfsg/menudrive.c:100:26: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
sprintf(rc,"%s/.xpprc",getenv("HOME"));
data/xppaut-6.11b+1.dfsg/menudrive.c:123:14: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
helpPath = getenv("XPPHELP");
data/xppaut-6.11b+1.dfsg/menudrive.c:137:7: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("XPPBROWSER")==NULL)
data/xppaut-6.11b+1.dfsg/menudrive.c:147:19: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
execlp(getenv("XPPBROWSER"),getenv("XPPHELP"),cmd,(char *)0);
data/xppaut-6.11b+1.dfsg/menudrive.c:147:40: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
execlp(getenv("XPPBROWSER"),getenv("XPPHELP"),cmd,(char *)0);
data/xppaut-6.11b+1.dfsg/ode/nthet.c:6:8: [3] (random) drand48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
double drand48();
data/xppaut-6.11b+1.dfsg/ode/nthet.c:21:14: [3] (random) drand48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
v1=2.0*drand48()-1.0;
data/xppaut-6.11b+1.dfsg/ode/nthet.c:22:14: [3] (random) drand48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
v2=2.0*drand48()-1.0;
data/xppaut-6.11b+1.dfsg/open.c:79:23: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
sprintf(buf,"%s/%s",getenv("HOME"),"tmp.FXXXXXX");
data/xppaut-6.11b+1.dfsg/read_dir.c:280:21: [3] (buffer) getwd:
This does not protect against buffer overflows by itself, so use with
caution (CWE-120, CWE-20). Use getcwd instead.
extern char *getwd();
data/xppaut-6.11b+1.dfsg/read_dir.c:288:9: [3] (buffer) getwd:
This does not protect against buffer overflows by itself, so use with
caution (CWE-120, CWE-20). Use getcwd instead.
if (getwd(direct) == NULL) {/* get current working dir */
data/xppaut-6.11b+1.dfsg/adj2.c:42:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/adj2.c:55:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char firstcol[11];
data/xppaut-6.11b+1.dfsg/adj2.c:66:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *coup_string[MAXODE];
data/xppaut-6.11b+1.dfsg/adj2.c:89:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/adj2.c:108:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[6][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/adj2.c:110:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%d",my_trans.ncol);
data/xppaut-6.11b+1.dfsg/adj2.c:111:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%d",my_trans.colskip);
data/xppaut-6.11b+1.dfsg/adj2.c:112:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%d",my_trans.row0);
data/xppaut-6.11b+1.dfsg/adj2.c:113:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[4],"%d",my_trans.nrow);
data/xppaut-6.11b+1.dfsg/adj2.c:114:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[5],"%d",my_trans.rowskip);
data/xppaut-6.11b+1.dfsg/adj2.c:133:6: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(values[4]);
data/xppaut-6.11b+1.dfsg/adj2.c:136:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
my_trans.ncol=atoi(values[1]);
data/xppaut-6.11b+1.dfsg/adj2.c:137:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
my_trans.colskip=atoi(values[2]);
data/xppaut-6.11b+1.dfsg/adj2.c:138:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
my_trans.row0=atoi(values[3]);
data/xppaut-6.11b+1.dfsg/adj2.c:139:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
my_trans.rowskip=atoi(values[5]);
data/xppaut-6.11b+1.dfsg/adj2.c:299:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/adj2.c:321:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[30];
data/xppaut-6.11b+1.dfsg/adj2.c:748:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/adj2.c:788:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"Maximal exponent is %g",sum);
data/xppaut-6.11b+1.dfsg/aniparse.c:137:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char *color_names[11];
data/xppaut-6.11b+1.dfsg/aniparse.c:200:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[256];
data/xppaut-6.11b+1.dfsg/aniparse.c:216:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char anifile[256];
data/xppaut-6.11b+1.dfsg/aniparse.c:361:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(mpeg.root,"frame");
data/xppaut-6.11b+1.dfsg/aniparse.c:566:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[3][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/aniparse.c:569:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[0],"%d",mpeg.flag);
data/xppaut-6.11b+1.dfsg/aniparse.c:571:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%d",mpeg.aviflag);
data/xppaut-6.11b+1.dfsg/aniparse.c:574:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mpeg.flag=atoi(values[0]);
data/xppaut-6.11b+1.dfsg/aniparse.c:576:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mpeg.aviflag=atoi(values[2]);
data/xppaut-6.11b+1.dfsg/aniparse.c:666:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[20];
data/xppaut-6.11b+1.dfsg/aniparse.c:670:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"%d",vcr.inc);
data/xppaut-6.11b+1.dfsg/aniparse.c:673:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
vcr.inc=atoi(bob);
data/xppaut-6.11b+1.dfsg/aniparse.c:789:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[256];
data/xppaut-6.11b+1.dfsg/aniparse.c:807:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
angiffile=fopen("anim.gif","wb");
data/xppaut-6.11b+1.dfsg/aniparse.c:895:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char junk[256];
data/xppaut-6.11b+1.dfsg/aniparse.c:899:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk," %d Mb disk space needed! Continue?",total);
data/xppaut-6.11b+1.dfsg/aniparse.c:1004:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char head[100];
data/xppaut-6.11b+1.dfsg/aniparse.c:1039:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(head,"P6\n%d %d\n255\n",ximage->width,ximage->height);
data/xppaut-6.11b+1.dfsg/aniparse.c:1100:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(vcr.file,"foo.ani");
data/xppaut-6.11b+1.dfsg/aniparse.c:1138:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[100];
data/xppaut-6.11b+1.dfsg/aniparse.c:1139:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(filename,"r");
data/xppaut-6.11b+1.dfsg/aniparse.c:1147:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"Bad ani-file at line %d",ani_line);
data/xppaut-6.11b+1.dfsg/aniparse.c:1159:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char old[300],new[300],big[300];
data/xppaut-6.11b+1.dfsg/aniparse.c:1193:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char x1[300],x2[300],x3[300],x4[300],col[300],thick[300];
data/xppaut-6.11b+1.dfsg/aniparse.c:1394:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ani_speed=atoi(nxt);
data/xppaut-6.11b+1.dfsg/aniparse.c:1632:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a->zthick=atoi(thick);
data/xppaut-6.11b+1.dfsg/aniparse.c:1694:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a->zthick=atoi(thick);
data/xppaut-6.11b+1.dfsg/aniparse.c:1695:4: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
n=atoi(x2);
data/xppaut-6.11b+1.dfsg/aniparse.c:1730:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a->zthick=atoi(thick);
data/xppaut-6.11b+1.dfsg/aniparse.c:1834:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a->zthick=atoi(thick);
data/xppaut-6.11b+1.dfsg/aniparse.c:1893:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int size=atoi(x1);
data/xppaut-6.11b+1.dfsg/aniparse.c:2374:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
s=(char *)my_ani[j].y2;
data/xppaut-6.11b+1.dfsg/aniparse.c:2382:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s2[256];
data/xppaut-6.11b+1.dfsg/aniparse.c:2387:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
s=(char *)my_ani[j].y2;
data/xppaut-6.11b+1.dfsg/aniparse.c:2431:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[256];
data/xppaut-6.11b+1.dfsg/aniparse.c:2480:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char start[256],end[256];
data/xppaut-6.11b+1.dfsg/aniparse.c:2535:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char form[256],c;
data/xppaut-6.11b+1.dfsg/aniparse.c:2536:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rhs[256],lhs[20];
data/xppaut-6.11b+1.dfsg/aniparse.c:2634:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
rn=atoi(rhs);
data/xppaut-6.11b+1.dfsg/aniparse.h:16:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lhsname[MAX_GEVENTS][11];
data/xppaut-6.11b+1.dfsg/aniparse.h:36:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char root[100];
data/xppaut-6.11b+1.dfsg/aniparse.h:37:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filter[256];
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:80:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char *color_names[11];
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:151:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[256];
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:302:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(mpeg.root,"frame");
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:374:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[4][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:377:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[0],"%d",mpeg.flag);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:379:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%d",mpeg.skip);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:381:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%d",mpeg.aviflag);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:387:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mpeg.flag=atoi(values[0]);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:388:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mpeg.skip=atoi(values[2]);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:390:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mpeg.aviflag=atoi(values[3]);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:466:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[20];
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:470:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"%d",vcr.inc);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:473:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
vcr.inc=atoi(bob);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:525:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[256];
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:621:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
giffile=fopen(fname,"wb");
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:650:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char junk[256];
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:655:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk," %d Mb disk space needed! Continue?",total);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:762:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char head[100];
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:797:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(head,"P6\n%d %d\n255\n",ximage->width,ximage->height);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:853:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(vcr.file,"foo.ani");
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:862:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:883:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[100];
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:884:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(filename,"r");
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:892:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"Bad ani-file at line %d",ani_line);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:904:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char old[300],new[300],big[300];
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:935:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char x1[300],x2[300],x3[300],x4[300],col[300],thick[300];
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1096:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ani_speed=atoi(nxt);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1323:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a->zthick=atoi(thick);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1385:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a->zthick=atoi(thick);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1386:4: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
n=atoi(x2);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1420:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a->zthick=atoi(thick);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1489:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a->zthick=atoi(thick);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1548:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int size=atoi(x1);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1975:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
s=(char *)my_ani[j].y2;
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1983:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s2[256];
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1988:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
s=(char *)my_ani[j].y2;
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:2032:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[256];
data/xppaut-6.11b+1.dfsg/aniparse_avi.h:16:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char root[100];
data/xppaut-6.11b+1.dfsg/aniparse_avi.h:17:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filter[256];
data/xppaut-6.11b+1.dfsg/array_print.c:38:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
my_plot_file=fopen(filename,"w");
data/xppaut-6.11b+1.dfsg/array_print.c:148:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[100];
data/xppaut-6.11b+1.dfsg/array_print.c:159:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(s,"%g",zlo);
data/xppaut-6.11b+1.dfsg/array_print.c:161:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(s,"%g",zhi);
data/xppaut-6.11b+1.dfsg/array_print.c:170:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[100];
data/xppaut-6.11b+1.dfsg/array_print.c:185:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(str,"%g",tlo);
data/xppaut-6.11b+1.dfsg/array_print.c:187:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(str,"%g",thi);
data/xppaut-6.11b+1.dfsg/array_print.c:189:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(str,"%g",jlo);
data/xppaut-6.11b+1.dfsg/array_print.c:191:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(str,"%g",jhi);
data/xppaut-6.11b+1.dfsg/array_print.c:219:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[4];
data/xppaut-6.11b+1.dfsg/arrayplot.c:66:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char this_file[100];
data/xppaut-6.11b+1.dfsg/arrayplot.c:71:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/arrayplot.c:75:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char aplot_range_stem[256]="rangearray";
data/xppaut-6.11b+1.dfsg/arrayplot.c:97:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[300];
data/xppaut-6.11b+1.dfsg/arrayplot.c:111:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[3][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/arrayplot.c:115:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%d",aplot_still);
data/xppaut-6.11b+1.dfsg/arrayplot.c:116:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%d",aplot_tag);
data/xppaut-6.11b+1.dfsg/arrayplot.c:120:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
aplot_still=atoi(values[1]);
data/xppaut-6.11b+1.dfsg/arrayplot.c:121:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
aplot_tag=atoi(values[2]);
data/xppaut-6.11b+1.dfsg/arrayplot.c:222:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(ap->filename,"output.ps");
data/xppaut-6.11b+1.dfsg/arrayplot.c:223:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(ap->xtitle,"index");
data/xppaut-6.11b+1.dfsg/arrayplot.c:224:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(ap->ytitle,"time");
data/xppaut-6.11b+1.dfsg/arrayplot.c:351:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[5][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/arrayplot.c:369:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[4],"%d",ap->type);
data/xppaut-6.11b+1.dfsg/arrayplot.c:376:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ap->type=atoi(values[4]);
data/xppaut-6.11b+1.dfsg/arrayplot.c:445:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char me[100];
data/xppaut-6.11b+1.dfsg/arrayplot.c:467:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*num=atoi(me);
data/xppaut-6.11b+1.dfsg/arrayplot.c:474:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[200];
data/xppaut-6.11b+1.dfsg/arrayplot.c:475:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sroot[100];
data/xppaut-6.11b+1.dfsg/arrayplot.c:491:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/arrayplot.c:513:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[9][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/arrayplot.c:515:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%d",ap->nacross);
data/xppaut-6.11b+1.dfsg/arrayplot.c:516:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%d",ap->nstart);
data/xppaut-6.11b+1.dfsg/arrayplot.c:517:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%d",ap->ndown);
data/xppaut-6.11b+1.dfsg/arrayplot.c:518:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[4],"%d",ap->nskip);
data/xppaut-6.11b+1.dfsg/arrayplot.c:519:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[5],"%g",ap->zmin);
data/xppaut-6.11b+1.dfsg/arrayplot.c:520:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[6],"%g",ap->zmax);
data/xppaut-6.11b+1.dfsg/arrayplot.c:521:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[7],"%d",plot3d_auto_redraw);
data/xppaut-6.11b+1.dfsg/arrayplot.c:522:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[8],"%d",ap->ncskip);
data/xppaut-6.11b+1.dfsg/arrayplot.c:542:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ap->nacross=atoi(values[1]);
data/xppaut-6.11b+1.dfsg/arrayplot.c:543:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ap->nstart=atoi(values[2]);
data/xppaut-6.11b+1.dfsg/arrayplot.c:544:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ap->ndown=atoi(values[3]);
data/xppaut-6.11b+1.dfsg/arrayplot.c:545:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ap->nskip=atoi(values[4]);
data/xppaut-6.11b+1.dfsg/arrayplot.c:546:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
plot3d_auto_redraw=atoi(values[7]);
data/xppaut-6.11b+1.dfsg/arrayplot.c:548:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ap->ncskip=atoi(values[8]);
data/xppaut-6.11b+1.dfsg/arrayplot.c:572:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((ap_fp=fopen(filename,"w"))==NULL){
data/xppaut-6.11b+1.dfsg/arrayplot.c:588:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((ap_fp=fopen(filename,"w"))==NULL){
data/xppaut-6.11b+1.dfsg/arrayplot.c:610:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/arrayplot.c:635:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[100];
data/xppaut-6.11b+1.dfsg/arrayplot.c:651:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob, " %g < t < %g ",tlo,thi);
data/xppaut-6.11b+1.dfsg/arrayplot.c:706:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[200];
data/xppaut-6.11b+1.dfsg/arrayplot.c:717:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"%g",ap.zmin);
data/xppaut-6.11b+1.dfsg/arrayplot.c:722:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"%g",ap.zmax);
data/xppaut-6.11b+1.dfsg/arrayplot.h:13:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20];
data/xppaut-6.11b+1.dfsg/arrayplot.h:15:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char xtitle[256],ytitle[256],filename[256],bottom[256];
data/xppaut-6.11b+1.dfsg/autlib1.c:3079:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ch__1[1];
data/xppaut-6.11b+1.dfsg/autlib1.c:3088:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char col[14*9], tmp[14];
data/xppaut-6.11b+1.dfsg/autlib1.c:3446:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char atype[2];
data/xppaut-6.11b+1.dfsg/auto.c:123:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char this_file[100];
data/xppaut-6.11b+1.dfsg/auto.c:124:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/auto.c:125:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char upar_names[MAXPAR][11];
data/xppaut-6.11b+1.dfsg/auto.c:166:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/auto.c:197:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hinttxt[256];
data/xppaut-6.11b+1.dfsg/auto.c:227:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(ylabel,"Norm");
data/xppaut-6.11b+1.dfsg/auto.c:230:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(ylabel,"Period");
data/xppaut-6.11b+1.dfsg/auto.c:233:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(ylabel,"Frequency");
data/xppaut-6.11b+1.dfsg/auto.c:246:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sx[20],sy[20];
data/xppaut-6.11b+1.dfsg/auto.c:257:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char junk[20],xlabel[20],ylabel[20];
data/xppaut-6.11b+1.dfsg/auto.c:263:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk,"%g",Auto.xmin);
data/xppaut-6.11b+1.dfsg/auto.c:265:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk,"%g",Auto.xmax);
data/xppaut-6.11b+1.dfsg/auto.c:268:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk,"%g",Auto.ymin);
data/xppaut-6.11b+1.dfsg/auto.c:273:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk,"%g",Auto.ymax);
data/xppaut-6.11b+1.dfsg/auto.c:386:5: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fo=fopen(old,"r");
data/xppaut-6.11b+1.dfsg/auto.c:387:5: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fn=fopen(new,"w");
data/xppaut-6.11b+1.dfsg/auto.c:400:5: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fo=fopen(old,"r");
data/xppaut-6.11b+1.dfsg/auto.c:401:5: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fn=fopen(new,"r");
data/xppaut-6.11b+1.dfsg/auto.c:407:5: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ft=fopen("__tmp__","w");
data/xppaut-6.11b+1.dfsg/auto.c:429:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[200];
data/xppaut-6.11b+1.dfsg/auto.c:457:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[200];
data/xppaut-6.11b+1.dfsg/auto.c:523:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[10][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/auto.c:524:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[100],*ptr;
data/xppaut-6.11b+1.dfsg/auto.c:562:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[5][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/auto.c:588:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[14][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/auto.c:589:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[0],"%d",Auto.ntst);
data/xppaut-6.11b+1.dfsg/auto.c:590:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%d",Auto.nmx);
data/xppaut-6.11b+1.dfsg/auto.c:591:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%d",Auto.npr);
data/xppaut-6.11b+1.dfsg/auto.c:592:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%g",Auto.ds);
data/xppaut-6.11b+1.dfsg/auto.c:593:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[4],"%g",Auto.dsmin);
data/xppaut-6.11b+1.dfsg/auto.c:594:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[7],"%g",Auto.dsmax);
data/xppaut-6.11b+1.dfsg/auto.c:595:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[8],"%g",Auto.rl0);
data/xppaut-6.11b+1.dfsg/auto.c:596:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[9],"%g",Auto.rl1);
data/xppaut-6.11b+1.dfsg/auto.c:597:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[10],"%g",Auto.a0);
data/xppaut-6.11b+1.dfsg/auto.c:598:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[11],"%g",Auto.a1);
data/xppaut-6.11b+1.dfsg/auto.c:599:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[5],"%d",Auto.ncol);
data/xppaut-6.11b+1.dfsg/auto.c:600:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[6],"%g",Auto.epsl);
data/xppaut-6.11b+1.dfsg/auto.c:601:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[12],"%g",Auto.epsu);
data/xppaut-6.11b+1.dfsg/auto.c:602:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[13],"%g",Auto.epss);
data/xppaut-6.11b+1.dfsg/auto.c:606:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Auto.ntst=atoi(values[0]);
data/xppaut-6.11b+1.dfsg/auto.c:607:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Auto.nmx=atoi(values[1]);
data/xppaut-6.11b+1.dfsg/auto.c:608:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Auto.npr=atoi(values[2]);
data/xppaut-6.11b+1.dfsg/auto.c:616:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Auto.ncol=atoi(values[5]);
data/xppaut-6.11b+1.dfsg/auto.c:642:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[7][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/auto.c:646:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char n1[15];
data/xppaut-6.11b+1.dfsg/auto.c:682:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%g",Auto.xmin);
data/xppaut-6.11b+1.dfsg/auto.c:683:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[4],"%g",Auto.ymin);
data/xppaut-6.11b+1.dfsg/auto.c:684:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[5],"%g",Auto.xmax);
data/xppaut-6.11b+1.dfsg/auto.c:685:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[6],"%g",Auto.ymax);
data/xppaut-6.11b+1.dfsg/auto.c:883:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[5];
data/xppaut-6.11b+1.dfsg/auto.c:884:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"%d",lab);
data/xppaut-6.11b+1.dfsg/auto.c:981:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at,"BP");
data/xppaut-6.11b+1.dfsg/auto.c:985:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at,"LP");
data/xppaut-6.11b+1.dfsg/auto.c:988:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at,"HB");
data/xppaut-6.11b+1.dfsg/auto.c:991:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at,"UZ");
data/xppaut-6.11b+1.dfsg/auto.c:994:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at,"PD");
data/xppaut-6.11b+1.dfsg/auto.c:997:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at,"TR");
data/xppaut-6.11b+1.dfsg/auto.c:1000:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at,"EP");
data/xppaut-6.11b+1.dfsg/auto.c:1003:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at,"MX");
data/xppaut-6.11b+1.dfsg/auto.c:1006:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at," ");
data/xppaut-6.11b+1.dfsg/auto.c:1014:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[80];
data/xppaut-6.11b+1.dfsg/auto.c:1015:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char p1name[12],p2name[12];
data/xppaut-6.11b+1.dfsg/auto.c:1019:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else sprintf(p2name," ");
data/xppaut-6.11b+1.dfsg/auto.c:1034:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[80];
data/xppaut-6.11b+1.dfsg/auto.c:1151:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/auto.c:1154:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"Auto restricted to less than %d variables",NAUTO);
data/xppaut-6.11b+1.dfsg/auto.c:1333:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(Auto.hinttxt,"x=%g,y=%g",x,y);
data/xppaut-6.11b+1.dfsg/auto.c:1391:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(Auto.hinttxt,"hint");
data/xppaut-6.11b+1.dfsg/auto.c:1448:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[256];
data/xppaut-6.11b+1.dfsg/auto.c:1463:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ch,string[200];
data/xppaut-6.11b+1.dfsg/auto.c:2053:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[256];
data/xppaut-6.11b+1.dfsg/auto.c:2058:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(string,"r");
data/xppaut-6.11b+1.dfsg/auto.c:2097:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/auto.c:2174:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[500];
data/xppaut-6.11b+1.dfsg/auto.c:2177:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fq=fopen(string,"r");
data/xppaut-6.11b+1.dfsg/auto.c:2193:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[500];
data/xppaut-6.11b+1.dfsg/auto.c:2196:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fq=fopen(string,"w");
data/xppaut-6.11b+1.dfsg/auto.c:2227:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/auto.c:2239:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(filename,"r");
data/xppaut-6.11b+1.dfsg/auto.c:2263:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[500];
data/xppaut-6.11b+1.dfsg/auto_nox.c:171:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char this_file[100];
data/xppaut-6.11b+1.dfsg/auto_nox.c:173:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char this_auto_file[200];
data/xppaut-6.11b+1.dfsg/auto_nox.c:174:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fort3[200];
data/xppaut-6.11b+1.dfsg/auto_nox.c:175:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fort7[200];
data/xppaut-6.11b+1.dfsg/auto_nox.c:176:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fort8[200];
data/xppaut-6.11b+1.dfsg/auto_nox.c:177:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fort9[200];
data/xppaut-6.11b+1.dfsg/auto_nox.c:178:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char TMPSWAP[200];
data/xppaut-6.11b+1.dfsg/auto_nox.c:181:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/auto_nox.c:182:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char upar_names[MAXPAR][11];
data/xppaut-6.11b+1.dfsg/auto_nox.c:195:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/auto_nox.c:269:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(ylabel,"Norm");
data/xppaut-6.11b+1.dfsg/auto_nox.c:272:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(ylabel,"Period");
data/xppaut-6.11b+1.dfsg/auto_nox.c:275:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(ylabel,"Frequency");
data/xppaut-6.11b+1.dfsg/auto_nox.c:288:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sx[20],sy[20];
data/xppaut-6.11b+1.dfsg/auto_nox.c:299:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char junk[20],xlabel[20],ylabel[20];
data/xppaut-6.11b+1.dfsg/auto_nox.c:305:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk,"%g",Auto.xmin);
data/xppaut-6.11b+1.dfsg/auto_nox.c:307:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk,"%g",Auto.xmax);
data/xppaut-6.11b+1.dfsg/auto_nox.c:310:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk,"%g",Auto.ymin);
data/xppaut-6.11b+1.dfsg/auto_nox.c:315:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk,"%g",Auto.ymax);
data/xppaut-6.11b+1.dfsg/auto_nox.c:362:5: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fo=fopen(old,"r");
data/xppaut-6.11b+1.dfsg/auto_nox.c:363:5: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fn=fopen(new,"w");
data/xppaut-6.11b+1.dfsg/auto_nox.c:376:5: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fo=fopen(old,"r");
data/xppaut-6.11b+1.dfsg/auto_nox.c:377:5: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fn=fopen(new,"r");
data/xppaut-6.11b+1.dfsg/auto_nox.c:383:5: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ft=fopen(TMPSWAP,"w");
data/xppaut-6.11b+1.dfsg/auto_nox.c:406:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[200];
data/xppaut-6.11b+1.dfsg/auto_nox.c:434:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[200];
data/xppaut-6.11b+1.dfsg/auto_nox.c:522:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[10][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/auto_nox.c:523:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[100],*ptr;
data/xppaut-6.11b+1.dfsg/auto_nox.c:561:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[5][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/auto_nox.c:587:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[14][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/auto_nox.c:588:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[0],"%d",Auto.ntst);
data/xppaut-6.11b+1.dfsg/auto_nox.c:589:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%d",Auto.nmx);
data/xppaut-6.11b+1.dfsg/auto_nox.c:590:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%d",Auto.npr);
data/xppaut-6.11b+1.dfsg/auto_nox.c:591:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%g",Auto.ds);
data/xppaut-6.11b+1.dfsg/auto_nox.c:592:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[4],"%g",Auto.dsmin);
data/xppaut-6.11b+1.dfsg/auto_nox.c:593:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[7],"%g",Auto.dsmax);
data/xppaut-6.11b+1.dfsg/auto_nox.c:594:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[8],"%g",Auto.rl0);
data/xppaut-6.11b+1.dfsg/auto_nox.c:595:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[9],"%g",Auto.rl1);
data/xppaut-6.11b+1.dfsg/auto_nox.c:596:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[10],"%g",Auto.a0);
data/xppaut-6.11b+1.dfsg/auto_nox.c:597:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[11],"%g",Auto.a1);
data/xppaut-6.11b+1.dfsg/auto_nox.c:598:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[5],"%d",Auto.ncol);
data/xppaut-6.11b+1.dfsg/auto_nox.c:599:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[6],"%g",Auto.epsl);
data/xppaut-6.11b+1.dfsg/auto_nox.c:600:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[12],"%g",Auto.epsu);
data/xppaut-6.11b+1.dfsg/auto_nox.c:601:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[13],"%g",Auto.epss);
data/xppaut-6.11b+1.dfsg/auto_nox.c:605:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Auto.ntst=atoi(values[0]);
data/xppaut-6.11b+1.dfsg/auto_nox.c:606:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Auto.nmx=atoi(values[1]);
data/xppaut-6.11b+1.dfsg/auto_nox.c:607:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Auto.npr=atoi(values[2]);
data/xppaut-6.11b+1.dfsg/auto_nox.c:615:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Auto.ncol=atoi(values[5]);
data/xppaut-6.11b+1.dfsg/auto_nox.c:637:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[7][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/auto_nox.c:641:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char n1[15];
data/xppaut-6.11b+1.dfsg/auto_nox.c:693:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%g",Auto.xmin);
data/xppaut-6.11b+1.dfsg/auto_nox.c:694:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[4],"%g",Auto.ymin);
data/xppaut-6.11b+1.dfsg/auto_nox.c:695:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[5],"%g",Auto.xmax);
data/xppaut-6.11b+1.dfsg/auto_nox.c:696:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[6],"%g",Auto.ymax);
data/xppaut-6.11b+1.dfsg/auto_nox.c:1004:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[5];
data/xppaut-6.11b+1.dfsg/auto_nox.c:1005:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"%d",lab);
data/xppaut-6.11b+1.dfsg/auto_nox.c:1103:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at,"BP");
data/xppaut-6.11b+1.dfsg/auto_nox.c:1107:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at,"LP");
data/xppaut-6.11b+1.dfsg/auto_nox.c:1110:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at,"HB");
data/xppaut-6.11b+1.dfsg/auto_nox.c:1113:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at,"UZ");
data/xppaut-6.11b+1.dfsg/auto_nox.c:1116:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at,"PD");
data/xppaut-6.11b+1.dfsg/auto_nox.c:1119:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at,"TR");
data/xppaut-6.11b+1.dfsg/auto_nox.c:1122:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at,"EP");
data/xppaut-6.11b+1.dfsg/auto_nox.c:1125:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at,"MX");
data/xppaut-6.11b+1.dfsg/auto_nox.c:1128:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(at," ");
data/xppaut-6.11b+1.dfsg/auto_nox.c:1136:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[80];
data/xppaut-6.11b+1.dfsg/auto_nox.c:1137:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char p1name[12],p2name[12];
data/xppaut-6.11b+1.dfsg/auto_nox.c:1141:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else sprintf(p2name," ");
data/xppaut-6.11b+1.dfsg/auto_nox.c:1156:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[80];
data/xppaut-6.11b+1.dfsg/auto_nox.c:1178:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char symb[3];
data/xppaut-6.11b+1.dfsg/auto_nox.c:1214:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/auto_nox.c:1217:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"Auto restricted to less than %d variables",NAUTO);
data/xppaut-6.11b+1.dfsg/auto_nox.c:1380:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[256];
data/xppaut-6.11b+1.dfsg/auto_nox.c:2041:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[256];
data/xppaut-6.11b+1.dfsg/auto_nox.c:2046:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(string,"r");
data/xppaut-6.11b+1.dfsg/auto_nox.c:2085:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/auto_nox.c:2163:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[500];
data/xppaut-6.11b+1.dfsg/auto_nox.c:2166:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fq=fopen(string,"r");
data/xppaut-6.11b+1.dfsg/auto_nox.c:2182:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[500];
data/xppaut-6.11b+1.dfsg/auto_nox.c:2185:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fq=fopen(string,"w");
data/xppaut-6.11b+1.dfsg/auto_nox.c:2216:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/auto_nox.c:2227:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(filename,"r");
data/xppaut-6.11b+1.dfsg/auto_nox.c:2251:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[500];
data/xppaut-6.11b+1.dfsg/auto_nox.h:28:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hinttxt[256];
data/xppaut-6.11b+1.dfsg/auto_x11.c:179:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(nsymb,"BP");
data/xppaut-6.11b+1.dfsg/auto_x11.c:182:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(nsymb,"EP");
data/xppaut-6.11b+1.dfsg/auto_x11.c:185:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(nsymb,"HB");
data/xppaut-6.11b+1.dfsg/auto_x11.c:188:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(nsymb,"LP");
data/xppaut-6.11b+1.dfsg/auto_x11.c:191:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(nsymb,"MX");
data/xppaut-6.11b+1.dfsg/auto_x11.c:194:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(nsymb,"PD");
data/xppaut-6.11b+1.dfsg/auto_x11.c:197:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(nsymb,"TR");
data/xppaut-6.11b+1.dfsg/auto_x11.c:200:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(nsymb,"UZ");
data/xppaut-6.11b+1.dfsg/auto_x11.c:205:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(nsymb," ");
data/xppaut-6.11b+1.dfsg/auto_x11.c:310:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char symb[3],nsymb[3];
data/xppaut-6.11b+1.dfsg/auto_x11.c:645:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(Auto.hinttxt,"x=%g,y=%g",x,y);
data/xppaut-6.11b+1.dfsg/auto_x11.c:727:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(Auto.hinttxt,"hint");
data/xppaut-6.11b+1.dfsg/axes2.c:41:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/axes2.c:48:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[40];
data/xppaut-6.11b+1.dfsg/axes2.c:71:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name1[20];
data/xppaut-6.11b+1.dfsg/axes2.c:72:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name2[20];
data/xppaut-6.11b+1.dfsg/axes2.c:73:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name3[20];
data/xppaut-6.11b+1.dfsg/axes2.c:135:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[50];
data/xppaut-6.11b+1.dfsg/axes2.c:140:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"theta=%g phi=%g",theta,phi);
data/xppaut-6.11b+1.dfsg/axes2.c:147:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[20],s2[20],s3[20];
data/xppaut-6.11b+1.dfsg/axes2.c:164:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[50];
data/xppaut-6.11b+1.dfsg/axes2.c:169:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"theta=%g phi=%g",theta,phi);
data/xppaut-6.11b+1.dfsg/axes2.c:195:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[20];
data/xppaut-6.11b+1.dfsg/axes2.c:243:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"%g",xmin);
data/xppaut-6.11b+1.dfsg/axes2.c:245:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"%g",xmax);
data/xppaut-6.11b+1.dfsg/axes2.c:249:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"%g",ymin);
data/xppaut-6.11b+1.dfsg/axes2.c:253:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"%g",ymax);
data/xppaut-6.11b+1.dfsg/axes2.c:259:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"%g",zmin);
data/xppaut-6.11b+1.dfsg/axes2.c:261:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"%g",zmax);
data/xppaut-6.11b+1.dfsg/axes2.c:319:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[100];
data/xppaut-6.11b+1.dfsg/axes2.c:325:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"%g",place);
data/xppaut-6.11b+1.dfsg/axes2.c:348:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[100];
data/xppaut-6.11b+1.dfsg/axes2.c:356:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"%g",place);
data/xppaut-6.11b+1.dfsg/backspace.c:13:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/xppaut-6.11b+1.dfsg/browse.c:49:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ode_names[MAXODE];
data/xppaut-6.11b+1.dfsg/browse.c:110:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/browse.c:265:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char var[20];
data/xppaut-6.11b+1.dfsg/browse.c:282:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char var[20],form[80];
data/xppaut-6.11b+1.dfsg/browse.c:345:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char n1[256],n2[256];
data/xppaut-6.11b+1.dfsg/browse.c:716:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[50];
data/xppaut-6.11b+1.dfsg/browse.c:727:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(string,"%.8g",b.data[0][i0]);
data/xppaut-6.11b+1.dfsg/browse.c:743:20: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(string,"%.7g",b.data[j0][i0]);
data/xppaut-6.11b+1.dfsg/browse.c:765:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(my_browser.hinttxt,"hint");
data/xppaut-6.11b+1.dfsg/browse.c:1275:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char var[20],form[80];
data/xppaut-6.11b+1.dfsg/browse.c:1308:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[4][25];
data/xppaut-6.11b+1.dfsg/browse.c:1313:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(value[1],"0.00");
data/xppaut-6.11b+1.dfsg/browse.c:1314:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(value[2],"1.00");
data/xppaut-6.11b+1.dfsg/browse.c:1340:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[2][25];
data/xppaut-6.11b+1.dfsg/browse.c:1346:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(value[1],"0.00");
data/xppaut-6.11b+1.dfsg/browse.c:1375:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
*fp=fopen(fil,"r");
data/xppaut-6.11b+1.dfsg/browse.c:1383:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
*fp=fopen(fil,"w");
data/xppaut-6.11b+1.dfsg/browse.c:1403:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fil[256];
data/xppaut-6.11b+1.dfsg/browse.c:1410:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(fil,"test.dat");
data/xppaut-6.11b+1.dfsg/browse.c:1417:5: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(fil,"r");
data/xppaut-6.11b+1.dfsg/browse.c:1478:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fil[256];
data/xppaut-6.11b+1.dfsg/browse.c:1483:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(fil,"test.dat");
data/xppaut-6.11b+1.dfsg/browse.c:1561:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sp[256];
data/xppaut-6.11b+1.dfsg/browse.h:18:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hinttxt[256];
data/xppaut-6.11b+1.dfsg/calc.c:60:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[100];
data/xppaut-6.11b+1.dfsg/calc.c:63:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"%.16g",my_calc.last_val);
data/xppaut-6.11b+1.dfsg/calc.c:126:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(name,"Formula:");
data/xppaut-6.11b+1.dfsg/calc.c:135:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[80],name[10];
data/xppaut-6.11b+1.dfsg/calc.c:170:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char val[15];
data/xppaut-6.11b+1.dfsg/cli.c:8:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/cli.c:26:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ans[25];
data/xppaut-6.11b+1.dfsg/cli.c:40:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char item[256];
data/xppaut-6.11b+1.dfsg/cli.c:41:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dum[256];
data/xppaut-6.11b+1.dfsg/cli.c:42:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sname[50];
data/xppaut-6.11b+1.dfsg/cli.c:52:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(dum," ");
data/xppaut-6.11b+1.dfsg/cli.c:73:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/cli.c:74:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sname[45];
data/xppaut-6.11b+1.dfsg/cli.c:75:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char newval[128];
data/xppaut-6.11b+1.dfsg/cli.c:99:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ilist=atoi(names[i]+1);
data/xppaut-6.11b+1.dfsg/cli.c:128:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c,e[10];
data/xppaut-6.11b+1.dfsg/cli.c:135:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*i=atoi(e);
data/xppaut-6.11b+1.dfsg/cli.c:160:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[7][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/cli.c:163:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%d",20);
data/xppaut-6.11b+1.dfsg/cli.c:164:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%g",0.0);
data/xppaut-6.11b+1.dfsg/cli.c:165:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%g",1.7);
data/xppaut-6.11b+1.dfsg/cli.c:167:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[5],"%d",-1);
data/xppaut-6.11b+1.dfsg/cli.c:176:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/cli.c:197:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tvalue[200];
data/xppaut-6.11b+1.dfsg/cli.c:198:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(tvalue,"%.16g",*value);
data/xppaut-6.11b+1.dfsg/cli.c:229:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char svalue[200];
data/xppaut-6.11b+1.dfsg/cli.c:230:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(svalue,"%d",*value);
data/xppaut-6.11b+1.dfsg/cli.c:232:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*value=atoi(svalue);
data/xppaut-6.11b+1.dfsg/comline.c:49:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char big_font_name[100],small_font_name[100];
data/xppaut-6.11b+1.dfsg/comline.c:57:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char setfilename[100];
data/xppaut-6.11b+1.dfsg/comline.c:58:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parfilename[100];
data/xppaut-6.11b+1.dfsg/comline.c:59:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char icfilename[100];
data/xppaut-6.11b+1.dfsg/comline.c:61:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char includefilename[MaxIncludeFiles][100];
data/xppaut-6.11b+1.dfsg/comline.c:63:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserBlack[8];
data/xppaut-6.11b+1.dfsg/comline.c:64:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserWhite[8];
data/xppaut-6.11b+1.dfsg/comline.c:65:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserMainWinColor[8];
data/xppaut-6.11b+1.dfsg/comline.c:66:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserDrawWinColor[8];
data/xppaut-6.11b+1.dfsg/comline.c:67:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserBGBitmap[100];
data/xppaut-6.11b+1.dfsg/comline.c:72:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserOUTFILE[256];
data/xppaut-6.11b+1.dfsg/comline.c:76:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char anifile[256];
data/xppaut-6.11b+1.dfsg/comline.c:90:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char batchout[256];
data/xppaut-6.11b+1.dfsg/comline.c:99:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char this_file[100];
data/xppaut-6.11b+1.dfsg/comline.c:109:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[10];
data/xppaut-6.11b+1.dfsg/comline.c:258:6: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(parfilename,"!load ");
data/xppaut-6.11b+1.dfsg/comline.c:331:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
use_intern_sets=atoi(argv[i+1]);
data/xppaut-6.11b+1.dfsg/comline.c:411:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(setfilename,"r");
data/xppaut-6.11b+1.dfsg/comlineold.c:40:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char big_font_name[100],small_font_name[100];
data/xppaut-6.11b+1.dfsg/comlineold.c:46:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char setfilename[100];
data/xppaut-6.11b+1.dfsg/comlineold.c:47:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parfilename[100];
data/xppaut-6.11b+1.dfsg/comlineold.c:48:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char icfilename[100];
data/xppaut-6.11b+1.dfsg/comlineold.c:49:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char includefilename[100];
data/xppaut-6.11b+1.dfsg/comlineold.c:51:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserBlack[8];
data/xppaut-6.11b+1.dfsg/comlineold.c:52:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserWhite[8];
data/xppaut-6.11b+1.dfsg/comlineold.c:53:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserMainWinColor[8];
data/xppaut-6.11b+1.dfsg/comlineold.c:54:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserDrawWinColor[8];
data/xppaut-6.11b+1.dfsg/comlineold.c:55:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserBGBitmap[100];
data/xppaut-6.11b+1.dfsg/comlineold.c:60:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserOUTFILE[256];
data/xppaut-6.11b+1.dfsg/comlineold.c:88:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char batchout[256];
data/xppaut-6.11b+1.dfsg/comlineold.c:97:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char this_file[100];
data/xppaut-6.11b+1.dfsg/comlineold.c:107:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[10];
data/xppaut-6.11b+1.dfsg/comlineold.c:251:6: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(parfilename,"!load ");
data/xppaut-6.11b+1.dfsg/comlineold.c:325:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
use_intern_sets=atoi(argv[i+1]);
data/xppaut-6.11b+1.dfsg/comlineold.c:382:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(setfilename,"r");
data/xppaut-6.11b+1.dfsg/cv2.c:28:26: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
void start_cv(y,t,n,tout,atol,rtol)
data/xppaut-6.11b+1.dfsg/cv2.c:29:24: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
double *y,t,tout,*atol,*rtol;
data/xppaut-6.11b+1.dfsg/cv2.c:36:63: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cvode_mem=CVodeMalloc(n, cvf, t, ycv, BDF, NEWTON, SS, rtol, atol,
data/xppaut-6.11b+1.dfsg/cv2.c:65:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[256];
data/xppaut-6.11b+1.dfsg/cv2.c:70:12: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
case -1: strcpy(s,"No memory allocated");
data/xppaut-6.11b+1.dfsg/cv2.c:72:12: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
case -2: strcpy(s,"Bad input to CVode");
data/xppaut-6.11b+1.dfsg/cv2.c:74:12: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
case -3: strcpy(s,"Too much work -- try smaller DT");
data/xppaut-6.11b+1.dfsg/cv2.c:76:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case -4: sprintf(s,"Tolerance too low-- try TOL=%g ATOL=%g",
data/xppaut-6.11b+1.dfsg/cv2.c:79:12: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
case -5: strcpy(s,"Error test failure too frequent ??");
data/xppaut-6.11b+1.dfsg/cv2.c:81:12: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
case -6: strcpy(s,"Converg. failure -- oh well!");
data/xppaut-6.11b+1.dfsg/cv2.c:83:12: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
case -7: strcpy(s,"Setup failed for linsolver in CVODE ???");
data/xppaut-6.11b+1.dfsg/cv2.c:85:12: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
case -8: strcpy(s,"Singular matrix encountered. Hmmm?");
data/xppaut-6.11b+1.dfsg/cv2.c:87:12: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
case -9: strcpy(s,"Flags error...");
data/xppaut-6.11b+1.dfsg/cv2.c:95:36: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int cvode(command,y,t,n,tout,kflag,atol,rtol)
data/xppaut-6.11b+1.dfsg/cv2.c:98:17: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
double *y,*atol,*rtol;
data/xppaut-6.11b+1.dfsg/cv2.c:105:43: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
return(ccvode(command,y,t,n,tout,kflag,atol,rtol));
data/xppaut-6.11b+1.dfsg/cv2.c:106:53: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
err=one_flag_step_cvode(command,y,t,n,tout,kflag,atol,rtol);
data/xppaut-6.11b+1.dfsg/cv2.c:111:37: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int ccvode(command,y,t,n,tout,kflag,atol,rtol)
data/xppaut-6.11b+1.dfsg/cv2.c:114:17: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
double *y,*atol,*rtol;
data/xppaut-6.11b+1.dfsg/cv2.c:126:26: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
start_cv(y,*t,n,tout,atol,rtol);
data/xppaut-6.11b+1.dfsg/cv2.h:6:64: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
void start_cv(double *y, double t, int n, double tout, double *atol, double *rtol);
data/xppaut-6.11b+1.dfsg/cv2.h:9:87: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int cvode(int *command, double *y, double *t, int n, double tout, int *kflag, double *atol, double *rtol);
data/xppaut-6.11b+1.dfsg/cv2.h:10:88: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int ccvode(int *command, double *y, double *t, int n, double tout, int *kflag, double *atol, double *rtol);
data/xppaut-6.11b+1.dfsg/cvode.c:323:57: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
static bool CVEwtSet(CVodeMem cv_mem, real *rtol, void *atol, int tol_type,
data/xppaut-6.11b+1.dfsg/cvode.c:325:59: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
static bool CVEwtSetSS(CVodeMem cv_mem, real *rtol, real *atol,
data/xppaut-6.11b+1.dfsg/cvode.c:327:62: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
static bool CVEwtSetSV(CVodeMem cv_mem, real *rtol, N_Vector atol,
data/xppaut-6.11b+1.dfsg/cvode.c:1136:57: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
static bool CVEwtSet(CVodeMem cv_mem, real *rtol, void *atol, int tol_type,
data/xppaut-6.11b+1.dfsg/cvode.c:1140:52: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case SS: return(CVEwtSetSS(cv_mem, rtol, (real *)atol, ycur, ewtvec, neq));
data/xppaut-6.11b+1.dfsg/cvode.c:1141:54: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case SV: return(CVEwtSetSV(cv_mem, rtol, (N_Vector)atol, ycur, ewtvec, neq));
data/xppaut-6.11b+1.dfsg/cvode.c:1156:59: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
static bool CVEwtSetSS(CVodeMem cv_mem, real *rtol, real *atol,
data/xppaut-6.11b+1.dfsg/cvode.c:1162:12: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
atoli = *atol;
data/xppaut-6.11b+1.dfsg/cvode.c:1181:62: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
static bool CVEwtSetSV(CVodeMem cv_mem, real *rtol, N_Vector atol,
data/xppaut-6.11b+1.dfsg/cvode.c:1188:35: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
N_VLinearSum(rtoli, tempv, ONE, atol, tempv);
data/xppaut-6.11b+1.dfsg/dae_fun.c:38:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[12],*rhs;
data/xppaut-6.11b+1.dfsg/dae_fun.c:298:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[30];
data/xppaut-6.11b+1.dfsg/delay_handle.c:29:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char delay_string[MAXODE][80];
data/xppaut-6.11b+1.dfsg/diagram.c:217:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/diagram.c:228:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(filename,"allinfo.dat");
data/xppaut-6.11b+1.dfsg/diagram.c:234:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(filename,"w");
data/xppaut-6.11b+1.dfsg/diagram.c:282:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/diagram.c:293:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(filename,"initdata.dat");
data/xppaut-6.11b+1.dfsg/diagram.c:299:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(filename,"w");
data/xppaut-6.11b+1.dfsg/diagram.c:352:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/diagram.c:362:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(filename,"diagram.dat");
data/xppaut-6.11b+1.dfsg/diagram.c:366:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(filename,"w");
data/xppaut-6.11b+1.dfsg/diagram.c:404:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/diagram.c:408:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(filename,"auto.ps");
data/xppaut-6.11b+1.dfsg/do_fit.c:328:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char collist[30],parlist1[30],parlist2[30],varlist[30];
data/xppaut-6.11b+1.dfsg/do_fit.c:450:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(filename,"r"))==NULL){
data/xppaut-6.11b+1.dfsg/do_fit.c:729:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[10][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/do_fit.c:733:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%g",fin.tol);
data/xppaut-6.11b+1.dfsg/do_fit.c:734:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[4],"%d",fin.npts);
data/xppaut-6.11b+1.dfsg/do_fit.c:735:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[5],"%d",fin.dim);
data/xppaut-6.11b+1.dfsg/do_fit.c:738:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[8],"%g",fin.eps);
data/xppaut-6.11b+1.dfsg/do_fit.c:739:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[9],"%d",fin.maxiter);
data/xppaut-6.11b+1.dfsg/do_fit.c:743:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fin.npts=atoi(values[4]);
data/xppaut-6.11b+1.dfsg/do_fit.c:744:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fin.dim=atoi(values[5]);
data/xppaut-6.11b+1.dfsg/do_fit.c:746:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fin.maxiter=atoi(values[9]);
data/xppaut-6.11b+1.dfsg/do_fit.c:769:5: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
v=atoi(item);
data/xppaut-6.11b+1.dfsg/do_fit.c:775:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
v=atoi(item);
data/xppaut-6.11b+1.dfsg/do_fit.h:6:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[25];
data/xppaut-6.11b+1.dfsg/do_fit.h:7:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char varlist[25],collist[25];
data/xppaut-6.11b+1.dfsg/do_fit.h:8:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parlist1[25],parlist2[25];
data/xppaut-6.11b+1.dfsg/dormpri.c:43:30: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int dp(istart,y,t,n,tout,tol,atol,flag,kflag)
data/xppaut-6.11b+1.dfsg/dormpri.c:44:29: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
double *y,*t,tout,*tol,*atol;
data/xppaut-6.11b+1.dfsg/dormpri.c:49:42: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
return(dormprin(istart,y,t,n,tout,tol,atol,flag,kflag));
data/xppaut-6.11b+1.dfsg/dormpri.c:50:45: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
err=one_flag_step_dp(istart,y,t,n,tout,tol,atol,flag,kflag);
data/xppaut-6.11b+1.dfsg/dormpri.c:62:36: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int dormprin(istart,y,t,n,tout,tol,atol,flag,kflag)
data/xppaut-6.11b+1.dfsg/dormpri.c:63:30: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
double *y,*t,tout,*tol,*atol;
data/xppaut-6.11b+1.dfsg/dormpri.c:71:41: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*kflag=dopri5(n,dprhs,*t,y,tout,tol,atol,0,(SolTrait)NULL,0,stdout,0.0,
data/xppaut-6.11b+1.dfsg/dormpri.c:76:42: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*kflag=dop853(n,dprhs,*t,y,tout,tol,atol,0,(SolTrait)NULL,0,stdout,0.0,
data/xppaut-6.11b+1.dfsg/dormpri.c:716:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (k1, k4, n * sizeof(double));
data/xppaut-6.11b+1.dfsg/dormpri.c:717:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (y, k5, n * sizeof(double));
data/xppaut-6.11b+1.dfsg/dormpri.c:1285:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (k1, k2, n * sizeof(double));
data/xppaut-6.11b+1.dfsg/dormpri.c:1286:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (y, yy1, n * sizeof(double));
data/xppaut-6.11b+1.dfsg/dormpri.h:431:84: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int dp(int *istart, double *y, double *t, int n, double tout, double *tol, double *atol, int flag, int *kflag);
data/xppaut-6.11b+1.dfsg/dormpri.h:432:90: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int dormprin(int *istart, double *y, double *t, int n, double tout, double *tol, double *atol, int flag, int *kflag);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:54:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/edit_rhs.c:55:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char *ode_names[MAXODE];
data/xppaut-6.11b+1.dfsg/edit_rhs.c:63:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char upar_names[MAXPAR][11],this_file[100];
data/xppaut-6.11b+1.dfsg/edit_rhs.c:66:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char *ufun_def[MAXUFUN];
data/xppaut-6.11b+1.dfsg/edit_rhs.c:67:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char ufun_names[MAXUFUN][12];
data/xppaut-6.11b+1.dfsg/edit_rhs.c:344:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fstr[20],msg[200];
data/xppaut-6.11b+1.dfsg/edit_rhs.c:353:25: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(i<NODE &&METHOD>0)strcpy(fstr,"d%s/dT");
data/xppaut-6.11b+1.dfsg/edit_rhs.c:354:26: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(i<NODE &&METHOD==0)strcpy(fstr,"%s(n+1)");
data/xppaut-6.11b+1.dfsg/edit_rhs.c:355:29: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(i<NODE &&EqType[i]==1)strcpy(fstr,"%s(T)");
data/xppaut-6.11b+1.dfsg/edit_rhs.c:356:15: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(i>=NODE)strcpy(fstr,"%s");
data/xppaut-6.11b+1.dfsg/edit_rhs.c:375:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
ode_names[i]=(char *)malloc(strlen(values[i])+5);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:401:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fundef[256];
data/xppaut-6.11b+1.dfsg/edit_rhs.c:410:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(fundef,") = ");
data/xppaut-6.11b+1.dfsg/edit_rhs.c:422:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[200];
data/xppaut-6.11b+1.dfsg/edit_rhs.c:489:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/edit_rhs.c:496:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(filename,"w");
data/xppaut-6.11b+1.dfsg/edit_rhs.h:38:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[MAX_N_EBOX][MAX_LEN_EBOX],
data/xppaut-6.11b+1.dfsg/eig_list.c:37:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/eig_list.c:38:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char *ode_names[MAXODE];
data/xppaut-6.11b+1.dfsg/eig_list.c:62:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char type[15];
data/xppaut-6.11b+1.dfsg/eig_list.c:78:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[300];
data/xppaut-6.11b+1.dfsg/eig_list.c:79:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fstr[15];
data/xppaut-6.11b+1.dfsg/eig_list.c:88:27: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(i<NODE &&METHOD>0)strcpy(fstr,"d%s/dT=%s");
data/xppaut-6.11b+1.dfsg/eig_list.c:89:28: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(i<NODE &&METHOD==0)strcpy(fstr,"%s(n+1)=%s");
data/xppaut-6.11b+1.dfsg/eig_list.c:90:31: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(i<NODE &&EqType[i]==1)strcpy(fstr,"%s(t)=%s");
data/xppaut-6.11b+1.dfsg/eig_list.c:91:17: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(i>=NODE)strcpy(fstr,"%s=%s");
data/xppaut-6.11b+1.dfsg/eig_list.c:312:16: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if(cp>0||rp>0)sprintf(eq_box.type,"UNSTABLE");
data/xppaut-6.11b+1.dfsg/eig_list.c:313:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if(im>0)sprintf(eq_box.type,"NEUTRAL");
data/xppaut-6.11b+1.dfsg/eig_list.c:314:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else sprintf(eq_box.type,"STABLE");
data/xppaut-6.11b+1.dfsg/eig_list.c:368:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[50];
data/xppaut-6.11b+1.dfsg/eig_list.c:380:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(temp,"c+ = %d",eq_box.info[0]);
data/xppaut-6.11b+1.dfsg/eig_list.c:382:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(temp,"c- = %d",eq_box.info[1]);
data/xppaut-6.11b+1.dfsg/eig_list.c:384:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(temp,"im = %d",eq_box.info[2]);
data/xppaut-6.11b+1.dfsg/eig_list.c:387:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(temp,"r+ = %d",eq_box.info[3]);
data/xppaut-6.11b+1.dfsg/eig_list.c:389:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(temp,"r- = %d",eq_box.info[4]);
data/xppaut-6.11b+1.dfsg/endfile.c:9:12: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
extern int mkstemp(char *template);
data/xppaut-6.11b+1.dfsg/endfile.c:20:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nbuf[10];
data/xppaut-6.11b+1.dfsg/endfile.c:21:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(nbuf,"fort.%ld",(long int)a->aunit);
data/xppaut-6.11b+1.dfsg/endfile.c:36:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BUFSIZ];
data/xppaut-6.11b+1.dfsg/endfile.c:38:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((k = open(from, 0)) < 0)
data/xppaut-6.11b+1.dfsg/endfile.c:55:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nm[200];
data/xppaut-6.11b+1.dfsg/endfile.c:78:9: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
(void) mkstemp(nm);
data/xppaut-6.11b+1.dfsg/err.c:168:48: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
|| (k = x->uwrt == 2 ? creat(x->ufnm,0666) : open(x->ufnm,1)) < 0
data/xppaut-6.11b+1.dfsg/extra.c:30:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dll_lib[256];
data/xppaut-6.11b+1.dfsg/extra.c:31:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dll_fun[256];
data/xppaut-6.11b+1.dfsg/extra.c:51:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char libname[1024];
data/xppaut-6.11b+1.dfsg/extra.c:52:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char libfile[256];
data/xppaut-6.11b+1.dfsg/extra.c:53:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fun[256];
data/xppaut-6.11b+1.dfsg/extra.c:222:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char new[20],c;
data/xppaut-6.11b+1.dfsg/flags.c:87:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char upar_names[MAXPAR][11];
data/xppaut-6.11b+1.dfsg/flags.c:93:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lhsname[MAX_EVENTS][11];
data/xppaut-6.11b+1.dfsg/flags.c:94:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *rhs[MAX_EVENTS];
data/xppaut-6.11b+1.dfsg/flags.c:118:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[256];
data/xppaut-6.11b+1.dfsg/flags.c:643:44: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int one_flag_step_dp(istart,y,t,n,tout,tol,atol,flag,kflag)
data/xppaut-6.11b+1.dfsg/flags.c:644:28: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
double *y,*t,tout,*tol,*atol;
data/xppaut-6.11b+1.dfsg/flags.c:655:36: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dormprin(istart,y,t,n,tout,tol,atol,flag,kflag);
data/xppaut-6.11b+1.dfsg/flags.c:676:50: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int one_flag_step_cvode(command,y,t,n,tout,kflag,atol,rtol)
data/xppaut-6.11b+1.dfsg/flags.c:679:17: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
double *y,*atol,*rtol;
data/xppaut-6.11b+1.dfsg/flags.c:692:37: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ccvode(command,y,t,n,tout,kflag,atol,rtol);
data/xppaut-6.11b+1.dfsg/flags.h:18:98: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int one_flag_step_dp(int *istart, double *y, double *t, int n, double tout, double *tol, double *atol, int flag, int *kflag);
data/xppaut-6.11b+1.dfsg/flags.h:21:95: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int one_flag_step_cvode(int *command,double *y,double *t,int n,double tout,int *kflag,double *atol,double *rtol);
data/xppaut-6.11b+1.dfsg/fmtlib.c:5:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
{ static char buf[MAXINTLENGTH+1];
data/xppaut-6.11b+1.dfsg/form_ode.c:46:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/form_ode.c:47:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ode_names[MAXODE];
data/xppaut-6.11b+1.dfsg/form_ode.c:48:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char upar_names[MAXPAR][11];
data/xppaut-6.11b+1.dfsg/form_ode.c:49:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *save_eqn[MAXLINES];
data/xppaut-6.11b+1.dfsg/form_ode.c:70:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[256];
data/xppaut-6.11b+1.dfsg/form_ode.c:74:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char includefilename[MaxIncludeFiles][100];
data/xppaut-6.11b+1.dfsg/form_ode.c:79:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *onlylist[MAXONLY];
data/xppaut-6.11b+1.dfsg/form_ode.c:88:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char delay_string[MAXODE][80];
data/xppaut-6.11b+1.dfsg/form_ode.c:122:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char this_file[100];
data/xppaut-6.11b+1.dfsg/form_ode.c:123:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char options[100];
data/xppaut-6.11b+1.dfsg/form_ode.c:126:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char aux_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/form_ode.c:185:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char end[256];
data/xppaut-6.11b+1.dfsg/form_ode.c:250:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmat[30];
data/xppaut-6.11b+1.dfsg/form_ode.c:276:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[MAXEXPLEN];
data/xppaut-6.11b+1.dfsg/form_ode.c:341:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char wild[256],string[256];
data/xppaut-6.11b+1.dfsg/form_ode.c:345:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(wild,"*.ode");
data/xppaut-6.11b+1.dfsg/form_ode.c:347:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fptr=fopen(string,"r"))==NULL)
data/xppaut-6.11b+1.dfsg/form_ode.c:384:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[MAXEXPLEN];
data/xppaut-6.11b+1.dfsg/form_ode.c:385:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/form_ode.c:388:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prim[15];
data/xppaut-6.11b+1.dfsg/form_ode.c:400:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(options,"default.opt");
data/xppaut-6.11b+1.dfsg/form_ode.c:416:5: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(bob);
data/xppaut-6.11b+1.dfsg/form_ode.c:430:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(filename,"convert.ode");
data/xppaut-6.11b+1.dfsg/form_ode.c:433:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((convertf=fopen(filename,"w"))==NULL){
data/xppaut-6.11b+1.dfsg/form_ode.c:470:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(my_bc[i].name,"0=");
data/xppaut-6.11b+1.dfsg/form_ode.c:492:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(uvar_names[i],"AUX%d",i-NODE-NMarkov+1);
data/xppaut-6.11b+1.dfsg/form_ode.c:599:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20],formula[MAXEXPLEN];
data/xppaut-6.11b+1.dfsg/form_ode.c:600:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char condition[MAXEXPLEN];
data/xppaut-6.11b+1.dfsg/form_ode.c:601:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fixname[MAXODE1][12];
data/xppaut-6.11b+1.dfsg/form_ode.c:673:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sign=atoi(my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:726:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nstates=atoi(my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:801:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(my_bc[BVP_N].name,"0=");
data/xppaut-6.11b+1.dfsg/form_ode.c:838:5: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nn=atoi(my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:894:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
narg=atoi(my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:1050:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[40];
data/xppaut-6.11b+1.dfsg/form_ode.c:1113:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char new[MAXEXPLEN],form[MAXEXPLEN],num[MAXEXPLEN];
data/xppaut-6.11b+1.dfsg/form_ode.c:1117:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20],ch;
data/xppaut-6.11b+1.dfsg/form_ode.c:1147:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(name,"K##%d",NKernel);
data/xppaut-6.11b+1.dfsg/form_ode.c:1330:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *strings[256];
data/xppaut-6.11b+1.dfsg/form_ode.c:1335:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20],nstates=0;
data/xppaut-6.11b+1.dfsg/form_ode.c:1336:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char newfile[256];
data/xppaut-6.11b+1.dfsg/form_ode.c:1340:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char big[MAXEXPLEN],old[MAXEXPLEN],new[MAXEXPLEN];
data/xppaut-6.11b+1.dfsg/form_ode.c:1359:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fnew=fopen(includefilename[j],"r");
data/xppaut-6.11b+1.dfsg/form_ode.c:1386:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fnew=fopen(newfile,"r");
data/xppaut-6.11b+1.dfsg/form_ode.c:1460:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nstates=atoi(my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:1482:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nstates=atoi(my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:1518:8: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(v.rhs,"...many states..");
data/xppaut-6.11b+1.dfsg/form_ode.c:1683:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[20],c;
data/xppaut-6.11b+1.dfsg/form_ode.c:1703:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char list[MAXODE1][MAXVNAM],*name;
data/xppaut-6.11b+1.dfsg/form_ode.c:1720:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vnames[MAXODE1][MAXVNAM],fnames[MAXODE1][MAXVNAM],anames[MAXODE1][MAXVNAM];
data/xppaut-6.11b+1.dfsg/form_ode.c:1721:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mnames[MAXODE1][MAXVNAM];
data/xppaut-6.11b+1.dfsg/form_ode.c:1723:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[50],big[MAXEXPLEN],formula[MAXEXPLEN],*my_string,*junk,*ptr,name[10];
data/xppaut-6.11b+1.dfsg/form_ode.c:2097:6: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nn=atoi(my_string);
data/xppaut-6.11b+1.dfsg/form_ode.c:2159:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char num[80],form[80];
data/xppaut-6.11b+1.dfsg/form_ode.c:2187:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lhs[MAXEXPLEN],rhs[MAXEXPLEN],args[MAXARG][NAMLEN+1];
data/xppaut-6.11b+1.dfsg/form_ode.c:2191:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1old[MAXEXPLEN];
data/xppaut-6.11b+1.dfsg/form_ode.c:2213:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(lhs,"0=");
data/xppaut-6.11b+1.dfsg/form_ode.c:2361:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char args[MAXARG][NAMLEN+1];
data/xppaut-6.11b+1.dfsg/form_ode.c:2478:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char args[MAXARG][NAMLEN+1];
data/xppaut-6.11b+1.dfsg/form_ode.c:2579:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[MAXEXPLEN];
data/xppaut-6.11b+1.dfsg/form_ode.c:2624:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char num1[20],num2[20];
data/xppaut-6.11b+1.dfsg/form_ode.c:2700:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*i1=atoi(num1);
data/xppaut-6.11b+1.dfsg/form_ode.c:2701:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*i2=atoi(num2);
data/xppaut-6.11b+1.dfsg/form_ode.c:2775:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ch,chp,num[20];
data/xppaut-6.11b+1.dfsg/form_ode.c:2799:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
add=atoi(num);
data/xppaut-6.11b+1.dfsg/form_ode.c:2800:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(num,"%d",add);
data/xppaut-6.11b+1.dfsg/form_ode.c:2854:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
add=atoi(num)*isign+k;
data/xppaut-6.11b+1.dfsg/form_ode.c:2857:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
add=atoi(num)*k;
data/xppaut-6.11b+1.dfsg/form_ode.c:2860:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(num,"%d",add);
data/xppaut-6.11b+1.dfsg/form_ode.c:2898:28: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
orig_comments[i].text=(char *)malloc(strlen(comments[i].text)+1);
data/xppaut-6.11b+1.dfsg/form_ode.c:2900:32: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
orig_comments[i].action=(char *)malloc(strlen(comments[i].action)+1);
data/xppaut-6.11b+1.dfsg/form_ode.c:2916:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
comments[i].text=(char *)malloc(strlen(orig_comments[i].text)+1);
data/xppaut-6.11b+1.dfsg/form_ode.c:2919:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
comments[i].action=(char *)malloc(strlen(orig_comments[i].action)+1);
data/xppaut-6.11b+1.dfsg/form_ode.c:2939:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/form_ode.c:2940:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ted[256];
data/xppaut-6.11b+1.dfsg/form_ode.c:2955:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char text[256],action[256],ch;
data/xppaut-6.11b+1.dfsg/form_ode.h:61:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int find_the_name(char list[1949][33], int n, char *name);
data/xppaut-6.11b+1.dfsg/form_ode.h:67:28: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void add_varinfo(int type, char *lhs, char *rhs, int nargs, char args[20][10 +1]);
data/xppaut-6.11b+1.dfsg/form_ode.h:67:39: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void add_varinfo(int type, char *lhs, char *rhs, int nargs, char args[20][10 +1]);
data/xppaut-6.11b+1.dfsg/form_ode.h:67:61: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void add_varinfo(int type, char *lhs, char *rhs, int nargs, char args[20][10 +1]);
data/xppaut-6.11b+1.dfsg/form_ode.h:71:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int extract_args(char *s1, int i0, int *ie, int *narg, char args[20][10 +1]);
data/xppaut-6.11b+1.dfsg/form_ode.h:71:56: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int extract_args(char *s1, int i0, int *ie, int *narg, char args[20][10 +1]);
data/xppaut-6.11b+1.dfsg/ggets.c:100:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[2];
data/xppaut-6.11b+1.dfsg/ggets.c:261:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[65];
data/xppaut-6.11b+1.dfsg/ggets.c:303:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[256],new[256];
data/xppaut-6.11b+1.dfsg/ggets.c:445:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tvalue[200];
data/xppaut-6.11b+1.dfsg/ggets.c:446:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(tvalue,"%.16g",*value);
data/xppaut-6.11b+1.dfsg/ggets.c:478:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char svalue[200];
data/xppaut-6.11b+1.dfsg/ggets.c:479:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(svalue,"%d",*value);
data/xppaut-6.11b+1.dfsg/ggets.c:481:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*value=atoi(svalue);
data/xppaut-6.11b+1.dfsg/ggets.c:685:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char old_value[80];
data/xppaut-6.11b+1.dfsg/ggetsold.c:85:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[2];
data/xppaut-6.11b+1.dfsg/ggetsold.c:219:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[65];
data/xppaut-6.11b+1.dfsg/ggetsold.c:261:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[256],new[256];
data/xppaut-6.11b+1.dfsg/ggetsold.c:403:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tvalue[200];
data/xppaut-6.11b+1.dfsg/ggetsold.c:404:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(tvalue,"%.16g",*value);
data/xppaut-6.11b+1.dfsg/ggetsold.c:436:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char svalue[200];
data/xppaut-6.11b+1.dfsg/ggetsold.c:437:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(svalue,"%d",*value);
data/xppaut-6.11b+1.dfsg/ggetsold.c:439:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*value=atoi(svalue);
data/xppaut-6.11b+1.dfsg/ggetsold.c:643:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char old_value[80];
data/xppaut-6.11b+1.dfsg/graf_par.c:46:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char PS_FONT[100];
data/xppaut-6.11b+1.dfsg/graf_par.c:77:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char this_file[100];
data/xppaut-6.11b+1.dfsg/graf_par.c:79:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/graf_par.c:135:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[8][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/graf_par.c:138:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char n1[15],n2[15];
data/xppaut-6.11b+1.dfsg/graf_par.c:143:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%g",MyGraph->xmin);
data/xppaut-6.11b+1.dfsg/graf_par.c:144:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%g",MyGraph->ymin);
data/xppaut-6.11b+1.dfsg/graf_par.c:145:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[4],"%g",MyGraph->xmax);
data/xppaut-6.11b+1.dfsg/graf_par.c:146:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[5],"%g",MyGraph->ymax);
data/xppaut-6.11b+1.dfsg/graf_par.c:185:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[7][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/graf_par.c:187:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[0],"%g",MyGraph->xorg);
data/xppaut-6.11b+1.dfsg/graf_par.c:188:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%g",MyGraph->yorg);
data/xppaut-6.11b+1.dfsg/graf_par.c:189:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%g",MyGraph->zorg);
data/xppaut-6.11b+1.dfsg/graf_par.c:190:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%d",MyGraph->xorgflag);
data/xppaut-6.11b+1.dfsg/graf_par.c:191:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[4],"%d",MyGraph->yorgflag);
data/xppaut-6.11b+1.dfsg/graf_par.c:192:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[5],"%d",MyGraph->zorgflag);
data/xppaut-6.11b+1.dfsg/graf_par.c:193:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[6],"%d",PS_FONTSIZE);
data/xppaut-6.11b+1.dfsg/graf_par.c:199:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
MyGraph->xorgflag=atoi(values[3]);
data/xppaut-6.11b+1.dfsg/graf_par.c:200:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
MyGraph->yorgflag=atoi(values[4]);
data/xppaut-6.11b+1.dfsg/graf_par.c:201:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
MyGraph->zorgflag=atoi(values[5]);
data/xppaut-6.11b+1.dfsg/graf_par.c:202:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
PS_FONTSIZE=atoi(values[6]);
data/xppaut-6.11b+1.dfsg/graf_par.c:216:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[16][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/graf_par.c:218:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char n1[15],n2[15],n3[15];
data/xppaut-6.11b+1.dfsg/graf_par.c:225:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%g",MyGraph->xmin);
data/xppaut-6.11b+1.dfsg/graf_par.c:226:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[5],"%g",MyGraph->ymin);
data/xppaut-6.11b+1.dfsg/graf_par.c:227:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[7],"%g",MyGraph->zmin);
data/xppaut-6.11b+1.dfsg/graf_par.c:228:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[4],"%g",MyGraph->xmax);
data/xppaut-6.11b+1.dfsg/graf_par.c:229:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[6],"%g",MyGraph->ymax);
data/xppaut-6.11b+1.dfsg/graf_par.c:230:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[8],"%g",MyGraph->zmax);
data/xppaut-6.11b+1.dfsg/graf_par.c:231:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[9],"%g",MyGraph->xlo);
data/xppaut-6.11b+1.dfsg/graf_par.c:232:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[11],"%g",MyGraph->ylo);
data/xppaut-6.11b+1.dfsg/graf_par.c:233:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[10],"%g",MyGraph->xhi);
data/xppaut-6.11b+1.dfsg/graf_par.c:234:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[12],"%g",MyGraph->yhi);
data/xppaut-6.11b+1.dfsg/graf_par.c:516:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[4][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/graf_par.c:518:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[0],"%g",MyGraph->xlo);
data/xppaut-6.11b+1.dfsg/graf_par.c:519:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%g",MyGraph->ylo);
data/xppaut-6.11b+1.dfsg/graf_par.c:520:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%g",MyGraph->xhi);
data/xppaut-6.11b+1.dfsg/graf_par.c:521:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%g",MyGraph->yhi);
data/xppaut-6.11b+1.dfsg/graf_par.c:542:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20],value[20];
data/xppaut-6.11b+1.dfsg/graf_par.c:547:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(name,"Plot vs t: ");
data/xppaut-6.11b+1.dfsg/graf_par.c:666:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[10][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/graf_par.c:674:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[0],"%d",MyGraph->PerspFlag);
data/xppaut-6.11b+1.dfsg/graf_par.c:675:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%g",MyGraph->ZPlane);
data/xppaut-6.11b+1.dfsg/graf_par.c:676:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%g",MyGraph->ZView);
data/xppaut-6.11b+1.dfsg/graf_par.c:677:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%g",MyGraph->Theta);
data/xppaut-6.11b+1.dfsg/graf_par.c:678:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[4],"%g",MyGraph->Phi);
data/xppaut-6.11b+1.dfsg/graf_par.c:681:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[7],"%g",mov3d.start);
data/xppaut-6.11b+1.dfsg/graf_par.c:682:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[8],"%g",mov3d.incr);
data/xppaut-6.11b+1.dfsg/graf_par.c:683:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[9],"%d",mov3d.nclip);
data/xppaut-6.11b+1.dfsg/graf_par.c:687:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
MyGraph->PerspFlag=atoi(values[0]);
data/xppaut-6.11b+1.dfsg/graf_par.c:697:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nclip=atoi(values[9]);
data/xppaut-6.11b+1.dfsg/graf_par.c:723:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[10][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/graf_par.c:731:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[0],"%g",MyGraph->Theta);
data/xppaut-6.11b+1.dfsg/graf_par.c:732:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%g",MyGraph->Phi);
data/xppaut-6.11b+1.dfsg/graf_par.c:735:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[4],"%g",mov3d.start);
data/xppaut-6.11b+1.dfsg/graf_par.c:736:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[5],"%g",mov3d.incr);
data/xppaut-6.11b+1.dfsg/graf_par.c:737:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[6],"%d",mov3d.nclip);
data/xppaut-6.11b+1.dfsg/graf_par.c:751:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nclip=atoi(values[6]);
data/xppaut-6.11b+1.dfsg/graf_par.c:957:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[5][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/graf_par.c:960:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char n1[15],n2[15],n3[15];
data/xppaut-6.11b+1.dfsg/graf_par.c:969:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%d",MyGraph->color[in_it]);
data/xppaut-6.11b+1.dfsg/graf_par.c:970:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[4],"%d",MyGraph->line[in_it]);
data/xppaut-6.11b+1.dfsg/graf_par.c:983:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
MyGraph->line[n]=atoi(values[4]);
data/xppaut-6.11b+1.dfsg/graf_par.c:984:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(values[3]);
data/xppaut-6.11b+1.dfsg/graf_par.c:997:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[20];
data/xppaut-6.11b+1.dfsg/graf_par.c:999:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"Edit 0-%d :",MyGraph->nvars-1);
data/xppaut-6.11b+1.dfsg/graf_par.c:1004:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"Edit curve %d",crv);
data/xppaut-6.11b+1.dfsg/graf_par.c:1018:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/graf_par.c:1021:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[5][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/graf_par.c:1022:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[0],"%d",PS_Color);
data/xppaut-6.11b+1.dfsg/graf_par.c:1023:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%d",PS_Port);
data/xppaut-6.11b+1.dfsg/graf_par.c:1024:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%d",PS_FONTSIZE);
data/xppaut-6.11b+1.dfsg/graf_par.c:1026:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[4],"%g",PS_LW);
data/xppaut-6.11b+1.dfsg/graf_par.c:1029:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
PS_Color=atoi(values[0]);
data/xppaut-6.11b+1.dfsg/graf_par.c:1030:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
PS_Port=atoi(values[1]);
data/xppaut-6.11b+1.dfsg/graf_par.c:1031:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
PS_FONTSIZE=atoi(values[2]);
data/xppaut-6.11b+1.dfsg/graf_par.c:1235:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(frz[i].name,"crv%c",'a'+i);
data/xppaut-6.11b+1.dfsg/graf_par.c:1249:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[3][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/graf_par.c:1251:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[0],"%d",frz[i].color);
data/xppaut-6.11b+1.dfsg/graf_par.c:1256:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
frz[i].color=atoi(values[0]);
data/xppaut-6.11b+1.dfsg/graf_par.c:1388:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/graf_par.c:1389:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(filename,"diagram.dat");
data/xppaut-6.11b+1.dfsg/graf_par.c:1393:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(filename,"r"))==NULL){
data/xppaut-6.11b+1.dfsg/graf_par.c:1447:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *n[MAXFRZ];
data/xppaut-6.11b+1.dfsg/graf_par.c:1448:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[MAXFRZ],ch;
data/xppaut-6.11b+1.dfsg/graf_par.c:1480:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/graf_par.c:1481:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(filename,"curve.dat");
data/xppaut-6.11b+1.dfsg/graf_par.c:1485:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(filename,"w"))==NULL){
data/xppaut-6.11b+1.dfsg/graf_par.h:18:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char angle[20];
data/xppaut-6.11b+1.dfsg/graf_par.h:19:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char yes[3];
data/xppaut-6.11b+1.dfsg/graphics.c:55:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dashes[10][5] = { {0}, {1,6,0},
data/xppaut-6.11b+1.dfsg/graphics.c:338:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[256],c;
data/xppaut-6.11b+1.dfsg/graphics.c:1052:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256],c,c2;
data/xppaut-6.11b+1.dfsg/graphics.c:1054:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char val[25];
data/xppaut-6.11b+1.dfsg/graphics.c:1072:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(val,"%g",z);
data/xppaut-6.11b+1.dfsg/graphics.c:1118:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char text[256];
data/xppaut-6.11b+1.dfsg/histogram.c:23:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/histogram.c:28:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cond[80];
data/xppaut-6.11b+1.dfsg/histogram.c:344:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[100];
data/xppaut-6.11b+1.dfsg/histogram.c:361:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob,"Mean=%g Std. Dev. = %g ",mean,sdev);
data/xppaut-6.11b+1.dfsg/histogram.c:369:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char variable[20];
data/xppaut-6.11b+1.dfsg/init_condold.c:53:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char upar_names[200][11],uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/init_condold.c:54:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char delay_string[MAXODE][80];
data/xppaut-6.11b+1.dfsg/init_condold.c:71:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parname[20];
data/xppaut-6.11b+1.dfsg/init_condold.c:94:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char this_file[100];
data/xppaut-6.11b+1.dfsg/init_condold.c:224:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[25];
data/xppaut-6.11b+1.dfsg/init_condold.c:271:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[4][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/init_condold.c:276:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%.16g",p->val);
data/xppaut-6.11b+1.dfsg/init_condold.c:277:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%.16g",p->lo);
data/xppaut-6.11b+1.dfsg/init_condold.c:278:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%.16g",p->hi);
data/xppaut-6.11b+1.dfsg/init_condold.c:429:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char top[256];
data/xppaut-6.11b+1.dfsg/init_condold.c:433:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(top,"%.16g",p->lo);
data/xppaut-6.11b+1.dfsg/init_condold.c:440:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(top,"%.16g",p->hi);
data/xppaut-6.11b+1.dfsg/init_condold.c:456:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(top,"Parameter?");
data/xppaut-6.11b+1.dfsg/init_condold.c:549:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sss[256];
data/xppaut-6.11b+1.dfsg/init_condold.c:586:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(sss,"%.16g",z);
data/xppaut-6.11b+1.dfsg/init_condold.c:590:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(sss,"%.16g",last_ic[i]);
data/xppaut-6.11b+1.dfsg/init_condold.c:686:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[80];
data/xppaut-6.11b+1.dfsg/init_condold.c:942:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256],value[256],junk[256];
data/xppaut-6.11b+1.dfsg/init_condold.c:949:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk,"%.16g",z);
data/xppaut-6.11b+1.dfsg/init_condold.c:962:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256],value[256],junk[256];
data/xppaut-6.11b+1.dfsg/init_condold.c:977:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk,"%.16g",z);
data/xppaut-6.11b+1.dfsg/init_condold.c:994:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char junk[256];
data/xppaut-6.11b+1.dfsg/init_condold.c:997:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk,"%.16g",default_val[i]);
data/xppaut-6.11b+1.dfsg/init_condold.c:1162:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char junk[256];
data/xppaut-6.11b+1.dfsg/init_condold.c:1163:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk,"%.16g",z);
data/xppaut-6.11b+1.dfsg/init_conds.c:66:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char *save_eqn[MAXLINES];
data/xppaut-6.11b+1.dfsg/init_conds.c:74:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserBGBitmap[100];
data/xppaut-6.11b+1.dfsg/init_conds.c:105:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char upar_names[MAXPAR][11],uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/init_conds.c:106:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char delay_string[MAXODE][80];
data/xppaut-6.11b+1.dfsg/init_conds.c:130:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char this_file[100];
data/xppaut-6.11b+1.dfsg/init_conds.c:253:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char clone[256];
data/xppaut-6.11b+1.dfsg/init_conds.c:260:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(clone,"w"))==NULL){
data/xppaut-6.11b+1.dfsg/init_conds.c:326:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[25];
data/xppaut-6.11b+1.dfsg/init_conds.c:378:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[4][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/init_conds.c:387:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%.16g",p->val);
data/xppaut-6.11b+1.dfsg/init_conds.c:388:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%.16g",p->lo);
data/xppaut-6.11b+1.dfsg/init_conds.c:389:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%.16g",p->hi);
data/xppaut-6.11b+1.dfsg/init_conds.c:475:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char t[256];
data/xppaut-6.11b+1.dfsg/init_conds.c:854:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ft[100];
data/xppaut-6.11b+1.dfsg/init_conds.c:855:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ftpath[100];
data/xppaut-6.11b+1.dfsg/init_conds.c:955:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char U[256];
data/xppaut-6.11b+1.dfsg/init_conds.c:1223:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char top[256];
data/xppaut-6.11b+1.dfsg/init_conds.c:1232:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(top,"%.16g",p->lo);
data/xppaut-6.11b+1.dfsg/init_conds.c:1239:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(top,"%.16g",p->hi);
data/xppaut-6.11b+1.dfsg/init_conds.c:1255:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(top,"Par/Var?");
data/xppaut-6.11b+1.dfsg/init_conds.c:1598:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sss[256];
data/xppaut-6.11b+1.dfsg/init_conds.c:1625:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(sss,"%.16g",z);
data/xppaut-6.11b+1.dfsg/init_conds.c:1629:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(sss,"%.16g",last_ic[i]);
data/xppaut-6.11b+1.dfsg/init_conds.c:2139:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256],junk[256];
data/xppaut-6.11b+1.dfsg/init_conds.c:2146:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk,"%.16g",z);
data/xppaut-6.11b+1.dfsg/init_conds.c:2160:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256],value[256],junk[256];
data/xppaut-6.11b+1.dfsg/init_conds.c:2187:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk,"%.16g",z);
data/xppaut-6.11b+1.dfsg/init_conds.c:2225:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char junk[256];
data/xppaut-6.11b+1.dfsg/init_conds.c:2228:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk,"%.16g",default_val[i]);
data/xppaut-6.11b+1.dfsg/init_conds.c:2408:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char junk[256];
data/xppaut-6.11b+1.dfsg/init_conds.c:2409:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(junk,"%.16g",z);
data/xppaut-6.11b+1.dfsg/init_conds.h:14:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char wildtxt[256],filetxt[256];
data/xppaut-6.11b+1.dfsg/init_conds.h:17:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char title[256];
data/xppaut-6.11b+1.dfsg/init_conds.h:30:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parname[20];
data/xppaut-6.11b+1.dfsg/inquire.c:11:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/xppaut-6.11b+1.dfsg/integrate.c:77:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define MSWTCH(u,v) memcpy((void *)(u),(void *)(v),xpv.node*sizeof(double))
data/xppaut-6.11b+1.dfsg/integrate.c:116:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char formula[256];
data/xppaut-6.11b+1.dfsg/integrate.c:118:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char var[20];
data/xppaut-6.11b+1.dfsg/integrate.c:156:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char batchout[256];
data/xppaut-6.11b+1.dfsg/integrate.c:169:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char upar_names[MAXPAR][11];
data/xppaut-6.11b+1.dfsg/integrate.c:174:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserOUTFILE[256];
data/xppaut-6.11b+1.dfsg/integrate.c:183:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char item[30];
data/xppaut-6.11b+1.dfsg/integrate.c:189:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char item[30],item2[30];
data/xppaut-6.11b+1.dfsg/integrate.c:225:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/integrate.c:305:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[7][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/integrate.c:309:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%d",eq_range.steps);
data/xppaut-6.11b+1.dfsg/integrate.c:310:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%.16g",eq_range.plow);
data/xppaut-6.11b+1.dfsg/integrate.c:311:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%.16g",eq_range.phigh);
data/xppaut-6.11b+1.dfsg/integrate.c:313:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[5],"%d",eq_range.col);
data/xppaut-6.11b+1.dfsg/integrate.c:326:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
eq_range.steps=atoi(values[1]);
data/xppaut-6.11b+1.dfsg/integrate.c:334:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
eq_range.col=atoi(values[5]);
data/xppaut-6.11b+1.dfsg/integrate.c:368:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/integrate.c:390:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/integrate.c:414:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[8][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/integrate.c:424:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%d",range.steps);
data/xppaut-6.11b+1.dfsg/integrate.c:425:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%.16g",range.plow);
data/xppaut-6.11b+1.dfsg/integrate.c:426:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%.16g",range.phigh);
data/xppaut-6.11b+1.dfsg/integrate.c:451:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
range.steps=atoi(values[1]);
data/xppaut-6.11b+1.dfsg/integrate.c:480:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[13][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/integrate.c:487:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%.16g",range.plow);
data/xppaut-6.11b+1.dfsg/integrate.c:488:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%.16g",range.phigh);
data/xppaut-6.11b+1.dfsg/integrate.c:490:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[4],"%.16g",range.plow2);
data/xppaut-6.11b+1.dfsg/integrate.c:491:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[5],"%.16g",range.phigh2);
data/xppaut-6.11b+1.dfsg/integrate.c:492:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[6],"%d",range.steps);
data/xppaut-6.11b+1.dfsg/integrate.c:501:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[12],"%d",range.steps2);
data/xppaut-6.11b+1.dfsg/integrate.c:510:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
range.steps=atoi(values[6]);
data/xppaut-6.11b+1.dfsg/integrate.c:511:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
range.steps2=atoi(values[12]);
data/xppaut-6.11b+1.dfsg/integrate.c:527:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
range.rtype=atoi(values[11]);
data/xppaut-6.11b+1.dfsg/integrate.c:553:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/xppaut-6.11b+1.dfsg/integrate.c:659:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[50];
data/xppaut-6.11b+1.dfsg/integrate.c:739:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[50];
data/xppaut-6.11b+1.dfsg/integrate.c:999:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(batchout,"w");
data/xppaut-6.11b+1.dfsg/integrate.c:1090:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(batchout,"w");
data/xppaut-6.11b+1.dfsg/integrate.c:1113:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outfile[256];
data/xppaut-6.11b+1.dfsg/integrate.c:1116:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(outfile,"w");
data/xppaut-6.11b+1.dfsg/integrate.c:1128:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sr[20],ch;
data/xppaut-6.11b+1.dfsg/integrate.c:1133:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char icfile[256];
data/xppaut-6.11b+1.dfsg/integrate.c:1270:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(sr,"Which? (1-%d)",ShootIndex);
data/xppaut-6.11b+1.dfsg/integrate.c:1286:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(icfile,"r"))==NULL){
data/xppaut-6.11b+1.dfsg/integrate.c:1468:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vp[25],fp[256];
data/xppaut-6.11b+1.dfsg/integrate.c:1489:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char front[40],new[50],c;
data/xppaut-6.11b+1.dfsg/integrate.c:1490:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char back[256];
data/xppaut-6.11b+1.dfsg/integrate.c:1539:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char junk[50];
data/xppaut-6.11b+1.dfsg/integrate.c:1540:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char new[50];
data/xppaut-6.11b+1.dfsg/integrate.c:1772:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char error_message[50];
data/xppaut-6.11b+1.dfsg/kbs.h:4:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char seq[5];
data/xppaut-6.11b+1.dfsg/kinescope.c:167:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char base[128];
data/xppaut-6.11b+1.dfsg/kinescope.c:169:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(base,"frame");
data/xppaut-6.11b+1.dfsg/kinescope.c:205:5: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen("anim.gif","wb");
data/xppaut-6.11b+1.dfsg/kinescope.c:226:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[256];
data/xppaut-6.11b+1.dfsg/kinescope.c:252:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(file,"wb");
data/xppaut-6.11b+1.dfsg/kinescope_avi.c:142:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char base[128];
data/xppaut-6.11b+1.dfsg/kinescope_avi.c:144:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(base,"frame");
data/xppaut-6.11b+1.dfsg/kinescope_avi.c:200:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[256];
data/xppaut-6.11b+1.dfsg/kinescope_avi.c:226:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(file,"wb");
data/xppaut-6.11b+1.dfsg/lbf_drive.c:82:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rtext[256];
data/xppaut-6.11b+1.dfsg/lbf_drive.c:105:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rtext[256];
data/xppaut-6.11b+1.dfsg/lbf_drive.c:181:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vnames[50][11],pnames[50][11],fnames[50][11];
data/xppaut-6.11b+1.dfsg/lbf_drive.c:194:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(vnames[i],"X%d",i+1);
data/xppaut-6.11b+1.dfsg/lbf_drive.c:208:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(pnames[i],"PAR%d",i+1);
data/xppaut-6.11b+1.dfsg/lio.c:51:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[LINTW],*p;
data/xppaut-6.11b+1.dfsg/lio.c:52:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(buf," %ld",(long int)n);
data/xppaut-6.11b+1.dfsg/load_eqn.c:45:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *interopt[MAXOPT];
data/xppaut-6.11b+1.dfsg/load_eqn.c:48:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char dll_lib[256];
data/xppaut-6.11b+1.dfsg/load_eqn.c:49:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char dll_fun[256];
data/xppaut-6.11b+1.dfsg/load_eqn.c:52:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserBlack[8];
data/xppaut-6.11b+1.dfsg/load_eqn.c:53:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserWhite[8];
data/xppaut-6.11b+1.dfsg/load_eqn.c:54:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserMainWinColor[8];
data/xppaut-6.11b+1.dfsg/load_eqn.c:55:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserDrawWinColor[8];
data/xppaut-6.11b+1.dfsg/load_eqn.c:56:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserBGBitmap[100];
data/xppaut-6.11b+1.dfsg/load_eqn.c:80:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/load_eqn.c:82:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char item[30],item2[30];
data/xppaut-6.11b+1.dfsg/load_eqn.c:104:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char batchout[256];
data/xppaut-6.11b+1.dfsg/load_eqn.c:108:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char big_font_name[100],small_font_name[100];
data/xppaut-6.11b+1.dfsg/load_eqn.c:112:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char PS_FONT[100];
data/xppaut-6.11b+1.dfsg/load_eqn.c:119:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char delay_string[MAXODE][80];
data/xppaut-6.11b+1.dfsg/load_eqn.c:121:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char this_file[100];
data/xppaut-6.11b+1.dfsg/load_eqn.c:132:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char options[100];
data/xppaut-6.11b+1.dfsg/load_eqn.c:309:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/load_eqn.c:334:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(delay_string[i],"0.0");
data/xppaut-6.11b+1.dfsg/load_eqn.c:351:25: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if(got_file==1&&(fptr=fopen(this_file,"r"))!=NULL)
data/xppaut-6.11b+1.dfsg/load_eqn.c:353:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if(std==1)sprintf(this_file,"console");
data/xppaut-6.11b+1.dfsg/load_eqn.c:366:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char odeclassrm[256];
data/xppaut-6.11b+1.dfsg/load_eqn.c:457:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(big_font_name,"fixed");
data/xppaut-6.11b+1.dfsg/load_eqn.c:462:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(small_font_name,"6x13");
data/xppaut-6.11b+1.dfsg/load_eqn.c:587:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(options,"r"))!=NULL)
data/xppaut-6.11b+1.dfsg/load_eqn.c:651:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[100];
data/xppaut-6.11b+1.dfsg/load_eqn.c:703:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[80];
data/xppaut-6.11b+1.dfsg/load_eqn.c:712:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[80];
data/xppaut-6.11b+1.dfsg/load_eqn.c:714:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*val=atoi(bob);
data/xppaut-6.11b+1.dfsg/load_eqn.c:729:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256],ch;
data/xppaut-6.11b+1.dfsg/load_eqn.c:768:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256],value[256];
data/xppaut-6.11b+1.dfsg/load_eqn.c:769:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[512];
data/xppaut-6.11b+1.dfsg/load_eqn.c:796:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20];
data/xppaut-6.11b+1.dfsg/load_eqn.c:833:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr,name[20],value[80],*junk,*mystring;
data/xppaut-6.11b+1.dfsg/load_eqn.c:920:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr,name[20],value[80],*junk,*mystring;
data/xppaut-6.11b+1.dfsg/load_eqn.c:924:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char intrnoptcpy[255]; /*Must use copy to avoid side effects of strtok used in get_first below*/
data/xppaut-6.11b+1.dfsg/load_eqn.c:1020:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rc[256];
data/xppaut-6.11b+1.dfsg/load_eqn.c:1021:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/load_eqn.c:1023:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(rc,"r");
data/xppaut-6.11b+1.dfsg/load_eqn.c:1059:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char xx[4],yy[4],zz[4];
data/xppaut-6.11b+1.dfsg/load_eqn.c:1071:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
XPPVERBOSE=(atoi(s2)==0);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1082:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
logfile=fopen(s2,"w");
data/xppaut-6.11b+1.dfsg/load_eqn.c:1092:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tfBell=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1155:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
UserGradients=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1171:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
UserMinWidth=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1179:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
UserMinHeight=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1187:6: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1199:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1215:6: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1227:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1240:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1251:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1278:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1287:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
NPltV=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1313:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(xx,"XP%d",j);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1314:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(yy,"YP%d",j);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1315:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(zz,"ZP%d",j);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1384:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
NJMP=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1392:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
NJMP=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1400:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
NMESH=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1419:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
MaxPoints=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1428:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
MAXSTOR=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1462:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
EVEC_ITER=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1564:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cv_bandupper=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1573:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cv_bandlower=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1723:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
POISGN=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1732:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
SOS=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1740:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
STOCH_FLAG=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1768:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
range.steps=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1829:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
batch_range=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1838:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
auto_ntst=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1846:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
auto_nmx=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1854:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
auto_npr=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1862:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
auto_ncol=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1954:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
RunImmediately=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1963:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
SEc=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1971:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
UEc=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1979:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
SPc=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1987:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
UPc=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1996:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
f=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:2067:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
PS_FONTSIZE=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqn.c:2076:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
PSColorFlag=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:13:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *interopt[MAXOPT];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:16:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char dll_lib[256];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:17:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char dll_fun[256];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:20:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserBlack[8];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:21:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserWhite[8];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:22:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserMainWinColor[8];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:23:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserDrawWinColor[8];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:24:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserBGBitmap[100];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:43:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:45:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char item[30],item2[30];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:65:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char batchout[256];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:69:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char big_font_name[100],small_font_name[100];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:73:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char PS_FONT[100];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:80:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char delay_string[MAXODE][80];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:82:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char this_file[100];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:93:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char options[100];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:137:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:162:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(delay_string[i],"0.0");
data/xppaut-6.11b+1.dfsg/load_eqnold.c:182:25: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if(got_file==1&&(fptr=fopen(this_file,"r"))!=NULL)
data/xppaut-6.11b+1.dfsg/load_eqnold.c:184:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if(std==1)sprintf(this_file,"console");
data/xppaut-6.11b+1.dfsg/load_eqnold.c:197:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char odeclassrm[256];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:284:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(big_font_name,"fixed");
data/xppaut-6.11b+1.dfsg/load_eqnold.c:285:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(small_font_name,"6x13");
data/xppaut-6.11b+1.dfsg/load_eqnold.c:376:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(options,"r"))!=NULL)
data/xppaut-6.11b+1.dfsg/load_eqnold.c:439:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[100];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:481:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[80];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:490:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[80];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:492:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*val=atoi(bob);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:507:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256],ch;
data/xppaut-6.11b+1.dfsg/load_eqnold.c:546:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256],value[256];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:547:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[512];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:569:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:605:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr,name[20],value[80],*junk,*mystring;
data/xppaut-6.11b+1.dfsg/load_eqnold.c:628:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr,name[20],value[80],*junk,*mystring;
data/xppaut-6.11b+1.dfsg/load_eqnold.c:657:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[80];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:678:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rc[256];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:679:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:681:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(rc,"r");
data/xppaut-6.11b+1.dfsg/load_eqnold.c:713:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char xx[4],yy[4],zz[4];
data/xppaut-6.11b+1.dfsg/load_eqnold.c:718:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tfBell=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:750:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
UserGradients=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:758:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
UserMinWidth=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:762:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
UserMinHeight=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:766:5: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:772:5: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:779:5: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:785:5: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:792:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:798:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:813:6: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:818:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
NPltV=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:834:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(xx,"XP%d",j);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:835:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(yy,"YP%d",j);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:836:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(zz,"ZP%d",j);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:877:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
NJMP=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:881:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
NJMP=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:885:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
NMESH=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:896:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
MaxPoints=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:900:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
MAXSTOR=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:917:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
EVEC_ITER=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:970:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cv_bandupper=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:975:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cv_bandlower=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1047:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
POISGN=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1052:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
SOS=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1056:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
STOCH_FLAG=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1072:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
range.steps=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1108:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
batch_range=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1113:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
auto_ntst=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1117:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
auto_nmx=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1121:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
auto_npr=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1125:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
auto_ncol=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1174:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
RunImmediately=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1179:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
SEc=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1183:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
UEc=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1187:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
SPc=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1191:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
UPc=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1196:6: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
f=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1235:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
PS_FONTSIZE=atoi(s2);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:1240:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
PSColorFlag=atoi(s2);
data/xppaut-6.11b+1.dfsg/lread.c:38:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ltab[128+1] = { /* offset one for EOF */
data/xppaut-6.11b+1.dfsg/lread.c:180:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[FMAX+EXPMAXDIGS+4];
data/xppaut-6.11b+1.dfsg/lread.c:218:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
lcount = atoi(s);
data/xppaut-6.11b+1.dfsg/lread.c:267:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(sp+1, "e%ld", (long int)exp);
data/xppaut-6.11b+1.dfsg/lunch-new.c:51:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char upar_names[MAXPAR][11],this_file[100],delay_string[MAXODE][80];
data/xppaut-6.11b+1.dfsg/lunch-new.c:52:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/lunch-new.c:53:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char *ode_names[MAXODE],*fix_names[MAXODE];
data/xppaut-6.11b+1.dfsg/lunch-new.c:60:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/lunch-new.c:106:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[200];
data/xppaut-6.11b+1.dfsg/lunch-new.c:107:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fstr[15];
data/xppaut-6.11b+1.dfsg/lunch-new.c:110:24: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(i<NODE&&METHOD>0)strcpy(fstr,"d%s/dT=%s\n");
data/xppaut-6.11b+1.dfsg/lunch-new.c:111:26: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(i<NODE&&METHOD==0)strcpy(fstr,"%s(n+1)=%s\n");
data/xppaut-6.11b+1.dfsg/lunch-new.c:112:17: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(i>=NODE)strcpy(fstr,"%s=%s\n");
data/xppaut-6.11b+1.dfsg/lunch-new.c:177:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/lunch-new.c:185:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ne=atoi(bob);
data/xppaut-6.11b+1.dfsg/lunch-new.c:219:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/lunch-new.c:222:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/lunch-new.c:230:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(filename,"r");
data/xppaut-6.11b+1.dfsg/lunch-new.c:241:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ne=atoi(bob);
data/xppaut-6.11b+1.dfsg/lunch-new.c:301:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fstr[15];
data/xppaut-6.11b+1.dfsg/lunch-new.c:304:24: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(i<NODE&&METHOD>0)strcpy(fstr,"d%s/dT=%s\n");
data/xppaut-6.11b+1.dfsg/lunch-new.c:305:26: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(i<NODE&&METHOD==0)strcpy(fstr,"%s(n+1)=%s\n");
data/xppaut-6.11b+1.dfsg/lunch-new.c:306:17: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(i>=NODE)strcpy(fstr,"%s=%s\n");
data/xppaut-6.11b+1.dfsg/lunch-new.c:331:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[256];
data/xppaut-6.11b+1.dfsg/lunch-new.c:380:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fnx[256],c;
data/xppaut-6.11b+1.dfsg/lunch-new.c:394:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(fnx,"r");
data/xppaut-6.11b+1.dfsg/lunch-new.c:413:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(fnx,"w");
data/xppaut-6.11b+1.dfsg/lunch-new.c:428:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fnx[256],c;
data/xppaut-6.11b+1.dfsg/lunch-new.c:442:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(fnx,"r");
data/xppaut-6.11b+1.dfsg/lunch-new.c:504:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[256];
data/xppaut-6.11b+1.dfsg/lunch-new.c:559:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[256];
data/xppaut-6.11b+1.dfsg/lunch-new.c:620:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/lunch-new.c:623:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*i=atoi(bob);
data/xppaut-6.11b+1.dfsg/lunch-new.c:635:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/lunch-new.c:650:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[256];
data/xppaut-6.11b+1.dfsg/lunch.c:40:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char upar_names[MAXPAR][11],this_file[100],delay_string[MAXODE][80];
data/xppaut-6.11b+1.dfsg/lunch.c:41:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/lunch.c:42:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char *ode_names[MAXODE],*fix_names[MAXODE];
data/xppaut-6.11b+1.dfsg/lunch.c:49:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/lunch.c:72:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[200];
data/xppaut-6.11b+1.dfsg/lunch.c:73:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fstr[15];
data/xppaut-6.11b+1.dfsg/lunch.c:76:24: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(i<NODE&&METHOD>0)strcpy(fstr,"d%s/dT=%s\n");
data/xppaut-6.11b+1.dfsg/lunch.c:77:26: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(i<NODE&&METHOD==0)strcpy(fstr,"%s(n+1)=%s\n");
data/xppaut-6.11b+1.dfsg/lunch.c:78:17: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(i>=NODE)strcpy(fstr,"%s=%s\n");
data/xppaut-6.11b+1.dfsg/lunch.c:147:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[80];
data/xppaut-6.11b+1.dfsg/lunch.c:149:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/lunch.c:155:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(filename,"r");
data/xppaut-6.11b+1.dfsg/lunch.c:330:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[81];
data/xppaut-6.11b+1.dfsg/lunch.c:333:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*i=atoi(bob);
data/xppaut-6.11b+1.dfsg/lunch.c:344:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[81];
data/xppaut-6.11b+1.dfsg/lunch.c:358:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[81];
data/xppaut-6.11b+1.dfsg/main.c:104:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char anifile[256];
data/xppaut-6.11b+1.dfsg/main.c:109:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char this_file[100];
data/xppaut-6.11b+1.dfsg/main.c:118:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char batchout[256];
data/xppaut-6.11b+1.dfsg/main.c:119:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char UserOUTFILE[256];
data/xppaut-6.11b+1.dfsg/main.c:125:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char big_font_name[100],small_font_name[100];
data/xppaut-6.11b+1.dfsg/main.c:128:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mycommand[100];
data/xppaut-6.11b+1.dfsg/main.c:141:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char UserBlack[8];
data/xppaut-6.11b+1.dfsg/main.c:142:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char UserWhite[8];
data/xppaut-6.11b+1.dfsg/main.c:143:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char UserMainWinColor[8];
data/xppaut-6.11b+1.dfsg/main.c:144:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char UserDrawWinColor[8];
data/xppaut-6.11b+1.dfsg/main.c:145:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char UserBGBitmap[100];
data/xppaut-6.11b+1.dfsg/main.c:176:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char myfile[256];
data/xppaut-6.11b+1.dfsg/main.c:178:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pptitle[80];
data/xppaut-6.11b+1.dfsg/main.c:319:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(batchout,"output.dat");
data/xppaut-6.11b+1.dfsg/main.c:401:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else sprintf(pptitle,"XPP Version %g.%g",xppvermaj,xppvermin);
data/xppaut-6.11b+1.dfsg/main.c:657:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char swapcol[8];
data/xppaut-6.11b+1.dfsg/mainold.c:65:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char this_file[100];
data/xppaut-6.11b+1.dfsg/mainold.c:74:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char batchout[256];
data/xppaut-6.11b+1.dfsg/mainold.c:75:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char UserOUTFILE[256];
data/xppaut-6.11b+1.dfsg/mainold.c:81:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char big_font_name[100],small_font_name[100];
data/xppaut-6.11b+1.dfsg/mainold.c:84:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mycommand[100];
data/xppaut-6.11b+1.dfsg/mainold.c:97:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char UserBlack[8];
data/xppaut-6.11b+1.dfsg/mainold.c:98:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char UserWhite[8];
data/xppaut-6.11b+1.dfsg/mainold.c:99:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char UserMainWinColor[8];
data/xppaut-6.11b+1.dfsg/mainold.c:100:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char UserDrawWinColor[8];
data/xppaut-6.11b+1.dfsg/mainold.c:101:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char UserBGBitmap[100];
data/xppaut-6.11b+1.dfsg/mainold.c:129:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char myfile[256];
data/xppaut-6.11b+1.dfsg/mainold.c:131:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pptitle[80];
data/xppaut-6.11b+1.dfsg/mainold.c:146:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(batchout,"output.dat");
data/xppaut-6.11b+1.dfsg/mainold.c:179:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else sprintf(pptitle,"XPP Version %g.%g",xppvermaj,xppvermin);
data/xppaut-6.11b+1.dfsg/mainold.c:374:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char swapcol[8];
data/xppaut-6.11b+1.dfsg/many_pops.c:120:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[128],name[12];
data/xppaut-6.11b+1.dfsg/many_pops.c:133:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *n[MAX_TAB],key[MAX_TAB],ch;
data/xppaut-6.11b+1.dfsg/many_pops.c:154:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *n[MAX_INTERN_SET],key[MAX_INTERN_SET],ch;
data/xppaut-6.11b+1.dfsg/many_pops.c:473:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[3][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/many_pops.c:475:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[0],"%d",markinfo.type);
data/xppaut-6.11b+1.dfsg/many_pops.c:476:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%d",markinfo.color);
data/xppaut-6.11b+1.dfsg/many_pops.c:477:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%g",markinfo.size);
data/xppaut-6.11b+1.dfsg/many_pops.c:480:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
markinfo.type=atoi(values[0]);
data/xppaut-6.11b+1.dfsg/many_pops.c:482:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
markinfo.color=atoi(values[1]);
data/xppaut-6.11b+1.dfsg/many_pops.c:492:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[6][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/many_pops.c:494:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[0],"%d",markinfo.type);
data/xppaut-6.11b+1.dfsg/many_pops.c:495:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%d",markinfo.color);
data/xppaut-6.11b+1.dfsg/many_pops.c:496:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%g",markinfo.size);
data/xppaut-6.11b+1.dfsg/many_pops.c:497:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%d",markinfo.number);
data/xppaut-6.11b+1.dfsg/many_pops.c:498:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[4],"%d",markinfo.start);
data/xppaut-6.11b+1.dfsg/many_pops.c:499:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[5],"%d",markinfo.skip);
data/xppaut-6.11b+1.dfsg/many_pops.c:502:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
markinfo.type=atoi(values[0]);
data/xppaut-6.11b+1.dfsg/many_pops.c:504:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
markinfo.color=atoi(values[1]);
data/xppaut-6.11b+1.dfsg/many_pops.c:505:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
markinfo.number=atoi(values[3]);
data/xppaut-6.11b+1.dfsg/many_pops.c:506:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
markinfo.start=atoi(values[4]);
data/xppaut-6.11b+1.dfsg/many_pops.c:507:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
markinfo.skip=atoi(values[5]);
data/xppaut-6.11b+1.dfsg/many_pops.c:648:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ans,str[80];
data/xppaut-6.11b+1.dfsg/many_pops.c:731:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(str,"Move graphic at (%f,%f)",
data/xppaut-6.11b+1.dfsg/many_pops.c:754:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(str,"Change graphic at (%f,%f)",
data/xppaut-6.11b+1.dfsg/many_pops.c:767:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(str,"Delete graphic at (%f,%f)",
data/xppaut-6.11b+1.dfsg/many_pops.c:1019:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/xppaut-6.11b+1.dfsg/many_pops.c:1026:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf,"x=%f y=%f ",x,y);
data/xppaut-6.11b+1.dfsg/many_pops.c:1317:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/xppaut-6.11b+1.dfsg/many_pops.c:1338:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf,"x=%f y=%f ",x,y);
data/xppaut-6.11b+1.dfsg/markov.c:52:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char *ode_names[MAXODE];
data/xppaut-6.11b+1.dfsg/markov.c:58:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char *save_eqn[1000];
data/xppaut-6.11b+1.dfsg/markov.c:67:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[12];
data/xppaut-6.11b+1.dfsg/markov.c:124:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[256],expr[256];
data/xppaut-6.11b+1.dfsg/markov.c:179:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[256],expr[256];
data/xppaut-6.11b+1.dfsg/menu.c:60:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[30];
data/xppaut-6.11b+1.dfsg/menu.c:61:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key,"icndwakgufpemtsvxr3b");
data/xppaut-6.11b+1.dfsg/menu.c:63:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key,"tsrdniobmechpukva");
data/xppaut-6.11b+1.dfsg/menu.c:68:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(key,"pwracesbhqtiglx");
data/xppaut-6.11b+1.dfsg/menudrive.c:65:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char text[256];
data/xppaut-6.11b+1.dfsg/menudrive.c:79:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rc[256];
data/xppaut-6.11b+1.dfsg/menudrive.c:80:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char editor[256];
data/xppaut-6.11b+1.dfsg/menudrive.c:121:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[256];
data/xppaut-6.11b+1.dfsg/menus.h:42:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[25];
data/xppaut-6.11b+1.dfsg/my_ps.c:39:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char PS_FONT[100]="Times-Roman";
data/xppaut-6.11b+1.dfsg/my_ps.c:125:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((psfile=fopen(filename,"w"))==NULL){
data/xppaut-6.11b+1.dfsg/my_ps.c:210:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[100];
data/xppaut-6.11b+1.dfsg/my_ps.c:214:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(bob," %.3f %.3f %.3f setrgbcolor", pscolor[i],pscolor[i+1],pscolor[i+2]);
data/xppaut-6.11b+1.dfsg/my_ps.c:370:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[256],c;
data/xppaut-6.11b+1.dfsg/nagroutines.c:683:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char p01rec[1*1];
data/xppaut-6.11b+1.dfsg/nagroutines.c:1277:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char rec[46*1];
data/xppaut-6.11b+1.dfsg/nagroutines.c:1642:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char rec[46*1];
data/xppaut-6.11b+1.dfsg/nagroutines.c:1852:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char p01rec[1*1];
data/xppaut-6.11b+1.dfsg/nagroutines.c:2020:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char p01rec[1*1];
data/xppaut-6.11b+1.dfsg/nagroutines.c:2736:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char p01rec[1*1];
data/xppaut-6.11b+1.dfsg/nagroutines.c:3307:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char p01rec[1*1];
data/xppaut-6.11b+1.dfsg/nagroutines.c:3682:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char p01rec[80*1];
data/xppaut-6.11b+1.dfsg/nagroutines.c:3858:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char p01rec[1*1];
data/xppaut-6.11b+1.dfsg/nagroutines.c:4078:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char p01rec[1*1];
data/xppaut-6.11b+1.dfsg/nagroutines.c:4460:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char varbnm[4], rec[80*1];
data/xppaut-6.11b+1.dfsg/nagroutines.c:7496:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char name4[1], name5[1];
data/xppaut-6.11b+1.dfsg/nagroutines.c:7679:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char mess[72];
data/xppaut-6.11b+1.dfsg/nagroutines.c:7788:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char rec[65*3];
data/xppaut-6.11b+1.dfsg/nagroutines.c:7863:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char rec[65*2];
data/xppaut-6.11b+1.dfsg/nagroutines.c:7959:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char mess[72];
data/xppaut-6.11b+1.dfsg/nagroutines.c:8165:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char p01rec[1*1];
data/xppaut-6.11b+1.dfsg/newpars.h:42:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lhs[MAXEXPLEN],rhs[MAXEXPLEN],args[MAXARG][NAMLEN+1];
data/xppaut-6.11b+1.dfsg/nullcline.c:90:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[4][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/nullcline.c:101:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%d",ncrange.nstep);
data/xppaut-6.11b+1.dfsg/nullcline.c:102:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%g",ncrange.xlo);
data/xppaut-6.11b+1.dfsg/nullcline.c:103:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%g",ncrange.xhi);
data/xppaut-6.11b+1.dfsg/nullcline.c:107:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ncrange.nstep=atoi(values[1]);
data/xppaut-6.11b+1.dfsg/nullcline.c:251:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fnx[256];
data/xppaut-6.11b+1.dfsg/nullcline.c:261:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(fnx,"w");
data/xppaut-6.11b+1.dfsg/nullcline.c:575:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[256];
data/xppaut-6.11b+1.dfsg/nullcline.c:577:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(filename,"nc.dat");
data/xppaut-6.11b+1.dfsg/nullcline.c:580:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(filename,"w");
data/xppaut-6.11b+1.dfsg/numerics.c:57:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char section[256];
data/xppaut-6.11b+1.dfsg/numerics.c:414:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[8][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/numerics.c:415:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[0],"%d",METHOD);
data/xppaut-6.11b+1.dfsg/numerics.c:416:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%g",ATOLER);
data/xppaut-6.11b+1.dfsg/numerics.c:417:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%g",TOLER);
data/xppaut-6.11b+1.dfsg/numerics.c:425:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[4][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/numerics.c:428:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char n1[15];
data/xppaut-6.11b+1.dfsg/numerics.c:443:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%.16g",POIPLN);
data/xppaut-6.11b+1.dfsg/numerics.c:444:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%d",POISGN);
data/xppaut-6.11b+1.dfsg/numerics.c:454:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
POISGN=atoi(values[2]);
data/xppaut-6.11b+1.dfsg/numerics.c:498:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ch,name[20];
data/xppaut-6.11b+1.dfsg/odesol2.c:494:16: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
double thresh=atol/rtol,absh,h;
data/xppaut-6.11b+1.dfsg/open.c:23:12: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
extern int mkstemp(char *template);
data/xppaut-6.11b+1.dfsg/open.c:31:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/xppaut-6.11b+1.dfsg/open.c:64:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "fort.%ld", (long int)a->ounit);
data/xppaut-6.11b+1.dfsg/open.c:80:10: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
(void) mkstemp(buf);
data/xppaut-6.11b+1.dfsg/open.c:95:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
{ b->ufd = fopen(buf,"r");
data/xppaut-6.11b+1.dfsg/open.c:101:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((b->ufd = fopen(buf, "r")) == NULL) {
data/xppaut-6.11b+1.dfsg/open.c:102:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((n = open(buf,1)) >= 0) {
data/xppaut-6.11b+1.dfsg/open.c:123:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
{ char nbuf[10];
data/xppaut-6.11b+1.dfsg/open.c:125:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(nbuf,"fort.%ld",(long int)n);
data/xppaut-6.11b+1.dfsg/parser.h:64:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[MXLEN+1];
data/xppaut-6.11b+1.dfsg/parser.h:225:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ufun_def[MAXUFUN];
data/xppaut-6.11b+1.dfsg/parser.h:226:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ufun_names[MAXUFUN][12];
data/xppaut-6.11b+1.dfsg/parser.h:238:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char args[MAXARG][11];
data/xppaut-6.11b+1.dfsg/parser.h:308:33: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int set_new_arg_names(int narg, char args[10][11]);
data/xppaut-6.11b+1.dfsg/parser.h:311:39: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int add_ufun_new(int index, int narg, char *rhs, char args[20][11]);
data/xppaut-6.11b+1.dfsg/parser.h:311:50: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int add_ufun_new(int index, int narg, char *rhs, char args[20][11]);
data/xppaut-6.11b+1.dfsg/parser2.c:520:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[100];
data/xppaut-6.11b+1.dfsg/parser2.c:573:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[100];
data/xppaut-6.11b+1.dfsg/parser2.c:574:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bexpr[MAXEXPLEN],kexpr[MAXEXPLEN];
data/xppaut-6.11b+1.dfsg/parser2.c:633:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[100];
data/xppaut-6.11b+1.dfsg/parser2.c:664:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dest[1024];
data/xppaut-6.11b+1.dfsg/parser2.c:700:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dest[1024];
data/xppaut-6.11b+1.dfsg/parser2.c:727:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[50];
data/xppaut-6.11b+1.dfsg/parser2.c:748:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[50];
data/xppaut-6.11b+1.dfsg/parser2.c:792:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[50];
data/xppaut-6.11b+1.dfsg/parser2.c:833:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(my_symb[FIRST_ARG+i].name,"ARG%d",i+1);
data/xppaut-6.11b+1.dfsg/parser2.c:839:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char args[10][11];
data/xppaut-6.11b+1.dfsg/parser2.c:864:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[50];
data/xppaut-6.11b+1.dfsg/parser2.c:887:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *rhs,args[MAXARG][11];
data/xppaut-6.11b+1.dfsg/parser2.c:944:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[50];
data/xppaut-6.11b+1.dfsg/parser2.c:994:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(ufun_arg[NFUN].args[i],"ARG%d",i+1);
data/xppaut-6.11b+1.dfsg/parser2.c:1107:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char junk[100];
data/xppaut-6.11b+1.dfsg/parser2.c:1519:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char junk[MAXEXPLEN];
data/xppaut-6.11b+1.dfsg/parser2.c:1650:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char num[40],junk[10];
data/xppaut-6.11b+1.dfsg/parserslow.h:63:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[MXLEN+1];
data/xppaut-6.11b+1.dfsg/parserslow.h:72:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char args[MAXARG][11];
data/xppaut-6.11b+1.dfsg/parserslow.h:99:34: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void set_new_arg_names(int narg, char args[10][11]);
data/xppaut-6.11b+1.dfsg/parserslow.h:102:39: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int add_ufun_new(int index, int narg, char *rhs, char args[20][11]);
data/xppaut-6.11b+1.dfsg/parserslow.h:102:50: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int add_ufun_new(int index, int narg, char *rhs, char args[20][11]);
data/xppaut-6.11b+1.dfsg/parserslow2.c:119:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ufun_def[MAXUFUN];
data/xppaut-6.11b+1.dfsg/parserslow2.c:120:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ufun_names[MAXUFUN][12];
data/xppaut-6.11b+1.dfsg/parserslow2.c:362:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[100];
data/xppaut-6.11b+1.dfsg/parserslow2.c:433:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[100];
data/xppaut-6.11b+1.dfsg/parserslow2.c:493:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[100];
data/xppaut-6.11b+1.dfsg/parserslow2.c:523:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dest[1024];
data/xppaut-6.11b+1.dfsg/parserslow2.c:550:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[50];
data/xppaut-6.11b+1.dfsg/parserslow2.c:571:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[50];
data/xppaut-6.11b+1.dfsg/parserslow2.c:616:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[50];
data/xppaut-6.11b+1.dfsg/parserslow2.c:656:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(my_symb[FIRST_ARG+i].name,"ARG%d",i+1);
data/xppaut-6.11b+1.dfsg/parserslow2.c:662:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char args[10][11];
data/xppaut-6.11b+1.dfsg/parserslow2.c:679:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[50];
data/xppaut-6.11b+1.dfsg/parserslow2.c:712:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *rhs,args[MAXARG][11];
data/xppaut-6.11b+1.dfsg/parserslow2.c:761:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[50];
data/xppaut-6.11b+1.dfsg/parserslow2.c:803:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(ufun_arg[NFUN].args[i],"ARG%d",i+1);
data/xppaut-6.11b+1.dfsg/parserslow2.c:920:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char junk[100];
data/xppaut-6.11b+1.dfsg/parserslow2.c:1271:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char junk[MAXEXPLEN];
data/xppaut-6.11b+1.dfsg/parserslow2.c:1400:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char num[40];
data/xppaut-6.11b+1.dfsg/phsplan.h:65:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/pop_list.c:80:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(scrbox_list[5].list[0],"2 Box");
data/xppaut-6.11b+1.dfsg/pop_list.c:81:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(scrbox_list[5].list[1],"3 Diamond");
data/xppaut-6.11b+1.dfsg/pop_list.c:82:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(scrbox_list[5].list[2],"4 Triangle");
data/xppaut-6.11b+1.dfsg/pop_list.c:83:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(scrbox_list[5].list[3],"5 Plus");
data/xppaut-6.11b+1.dfsg/pop_list.c:84:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(scrbox_list[5].list[4],"6 X");
data/xppaut-6.11b+1.dfsg/pop_list.c:85:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(scrbox_list[5].list[5],"7 Circle");
data/xppaut-6.11b+1.dfsg/pop_list.c:253:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sb.hh[i]=atoi(names[i]+1);
data/xppaut-6.11b+1.dfsg/pop_list.h:60:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserBlack[8];
data/xppaut-6.11b+1.dfsg/pop_list.h:61:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char UserWhite[8];
data/xppaut-6.11b+1.dfsg/pop_list.h:75:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[MAX_N_SBOX][MAX_LEN_SBOX],
data/xppaut-6.11b+1.dfsg/pop_list.h:89:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char upar_names[MAXPAR][11],uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/pp_shoot.c:79:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char item[30];
data/xppaut-6.11b+1.dfsg/pp_shoot.c:84:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char upar_names[MAXPAR][11];
data/xppaut-6.11b+1.dfsg/pp_shoot.c:85:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/pp_shoot.c:139:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char badcom[50];
data/xppaut-6.11b+1.dfsg/pp_shoot.c:149:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(badcom,"Bad syntax on %d th BC",i+1);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:240:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bob[50];
data/xppaut-6.11b+1.dfsg/pp_shoot.c:296:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[4][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/pp_shoot.c:300:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%d",my_hom.nunstab);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:301:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%d",my_hom.nstab);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:319:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
my_hom.nunstab=atoi(values[2]);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:320:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
my_hom.nstab=atoi(values[3]);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:336:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[4][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/pp_shoot.c:341:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%g",*sect);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:476:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char values[7][MAX_LEN_SBOX];
data/xppaut-6.11b+1.dfsg/pp_shoot.c:480:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[1],"%d",shoot_range.steps);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:481:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[2],"%g",shoot_range.plow);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:482:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[3],"%g",shoot_range.phigh);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:484:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(values[5],"%d",shoot_range.side);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:496:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
shoot_range.steps=atoi(values[1]);
data/xppaut-6.11b+1.dfsg/pp_shoot.c:505:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
shoot_range.side=atoi(values[5]);
data/xppaut-6.11b+1.dfsg/rdfmt.c:81:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[84], *ps;
data/xppaut-6.11b+1.dfsg/rdfmt.c:104:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[84], *ps;
data/xppaut-6.11b+1.dfsg/rdfmt.c:133:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[FMAX+EXPMAXDIGS+4];
data/xppaut-6.11b+1.dfsg/rdfmt.c:279:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(sp+1, "e%ld", (long int)exp);
data/xppaut-6.11b+1.dfsg/read_dir.c:70:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cur_dir[MAXPATHLEN];
data/xppaut-6.11b+1.dfsg/read_dir.c:304:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fullpath[MAXPATHLEN];
data/xppaut-6.11b+1.dfsg/rsne.c:119:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char Alpha[256], Alphanum[256];
data/xppaut-6.11b+1.dfsg/rsne.c:238:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/xppaut-6.11b+1.dfsg/run_auto.c:23:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char fort3[200];
data/xppaut-6.11b+1.dfsg/run_auto.c:24:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char fort7[200];
data/xppaut-6.11b+1.dfsg/run_auto.c:25:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char fort8[200];
data/xppaut-6.11b+1.dfsg/run_auto.c:26:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char fort9[200];
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:100:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rep[10];
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:116:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *a[MAXPEREV];
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:145:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *re[NP];
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:146:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *pr[NP];
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:158:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *arg[32];
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:298:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char big[256];
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:954:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[9],x[5];
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1027:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char z[2048],zp[2048];
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1053:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[256],tmp[2048];
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1054:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char big[2048],bigp[2048];
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1063:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(fname,"w");
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1148:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if(j>0){sprintf(tmp," + ");strcat(big,tmp);}
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1149:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(tmp,"(%g)*Rxn%d",x->s[j],k+1);
data/xppaut-6.11b+1.dfsg/simplenet.c:120:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[128],name[12];
data/xppaut-6.11b+1.dfsg/simplenet.c:127:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20];
data/xppaut-6.11b+1.dfsg/simplenet.c:204:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char junk[256];
data/xppaut-6.11b+1.dfsg/simplenet.c:205:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rootname[20],wgtname[20],indname[20];
data/xppaut-6.11b+1.dfsg/simplenet.c:206:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char root2name[20],fname[20];
data/xppaut-6.11b+1.dfsg/simplenet.c:230:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ntot=atoi(str);
data/xppaut-6.11b+1.dfsg/simplenet.c:236:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ncon=atoi(str);
data/xppaut-6.11b+1.dfsg/simplenet.c:273:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ntot=atoi(str);
data/xppaut-6.11b+1.dfsg/simplenet.c:280:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ncon=atoi(str);
data/xppaut-6.11b+1.dfsg/simplenet.c:341:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ntot=atoi(str);
data/xppaut-6.11b+1.dfsg/simplenet.c:347:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ncon=atoi(str);
data/xppaut-6.11b+1.dfsg/simplenet.c:402:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ntot=atoi(str);
data/xppaut-6.11b+1.dfsg/simplenet.c:409:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ncon=atoi(str);
data/xppaut-6.11b+1.dfsg/simplenet.c:491:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ntot=atoi(str);
data/xppaut-6.11b+1.dfsg/simplenet.c:548:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ntot=atoi(str);
data/xppaut-6.11b+1.dfsg/simplenet.c:555:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ncon=atoi(str);
data/xppaut-6.11b+1.dfsg/simplenet.c:598:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ntot=atoi(str);
data/xppaut-6.11b+1.dfsg/simplenet.c:605:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ncon=atoi(str);
data/xppaut-6.11b+1.dfsg/simplenet.c:664:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ivar=atoi(str);
data/xppaut-6.11b+1.dfsg/simplenet.c:668:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ivar=atoi(str);
data/xppaut-6.11b+1.dfsg/simplenet.c:701:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ivar=atoi(str);
data/xppaut-6.11b+1.dfsg/simplenet.c:1083:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char piece[50],b[20],bn[25],c;
data/xppaut-6.11b+1.dfsg/simplenet.c:1144:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c,num[20];
data/xppaut-6.11b+1.dfsg/simplenet.c:1168:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*i1=atoi(num);
data/xppaut-6.11b+1.dfsg/simplenet.c:1178:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*i2=atoi(num);
data/xppaut-6.11b+1.dfsg/struct.h:22:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rv[10];
data/xppaut-6.11b+1.dfsg/struct.h:34:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascval[MAXODE][ICLENGTH];
data/xppaut-6.11b+1.dfsg/struct.h:66:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char xlabel[30],ylabel[30],zlabel[30];
data/xppaut-6.11b+1.dfsg/struct.h:67:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char gr_info[256];
data/xppaut-6.11b+1.dfsg/struct.h:80:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[MAXCHAR];
data/xppaut-6.11b+1.dfsg/struct.h:88:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[20],name[10];
data/xppaut-6.11b+1.dfsg/struct.h:97:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[10];
data/xppaut-6.11b+1.dfsg/struct.h:109:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mes_s[MAXCHAR];
data/xppaut-6.11b+1.dfsg/struct.h:110:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char input_s[MAXCHAR];
data/xppaut-6.11b+1.dfsg/struct.h:111:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ok_s[MAXCHAR];
data/xppaut-6.11b+1.dfsg/struct.h:112:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cancel_s[MAXCHAR];
data/xppaut-6.11b+1.dfsg/struct.h:117:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char title[MAXCHAR];
data/xppaut-6.11b+1.dfsg/struct.h:131:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[MAXCHAR];
data/xppaut-6.11b+1.dfsg/struct.h:132:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[MAXCHAR];
data/xppaut-6.11b+1.dfsg/struct.h:137:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char title[MAXCHAR];
data/xppaut-6.11b+1.dfsg/struct.h:147:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[10];
data/xppaut-6.11b+1.dfsg/struct.h:148:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[80];
data/xppaut-6.11b+1.dfsg/struct.h:153:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char title[100];
data/xppaut-6.11b+1.dfsg/tabular.c:82:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[128],name[12];
data/xppaut-6.11b+1.dfsg/tabular.c:127:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[128];
data/xppaut-6.11b+1.dfsg/tabular.c:131:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char newform[80];
data/xppaut-6.11b+1.dfsg/tabular.c:167:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[128];
data/xppaut-6.11b+1.dfsg/tabular.c:168:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[10];
data/xppaut-6.11b+1.dfsg/tabular.c:172:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char newform[80];
data/xppaut-6.11b+1.dfsg/tabular.c:393:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bobtab[100];
data/xppaut-6.11b+1.dfsg/tabular.c:405:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(filename,"r");
data/xppaut-6.11b+1.dfsg/tabular.c:422:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
length=atoi(bob);
data/xppaut-6.11b+1.dfsg/torus.c:41:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char upar_names[MAXPAR][11],uvar_names[MAXODE][12];
data/xppaut-6.11b+1.dfsg/torus.c:86:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char strng[15];
data/xppaut-6.11b+1.dfsg/txtread.c:38:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char *save_eqn[MAXLINES];
data/xppaut-6.11b+1.dfsg/userbut.c:122:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bname[10],sc[10];
data/xppaut-6.11b+1.dfsg/userbut.h:8:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bname[10];
data/xppaut-6.11b+1.dfsg/volterra.h:10:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20],*expr,*kerexpr;
data/xppaut-6.11b+1.dfsg/wref.c:25:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[FMAX+EXPMAXDIGS+4], *s, *se;
data/xppaut-6.11b+1.dfsg/wref.c:72:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf,"%#.*E", d, dd);
data/xppaut-6.11b+1.dfsg/wref.c:90:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(se, "%+.2d", atoi(se) + 1 - scale);
data/xppaut-6.11b+1.dfsg/wref.c:90:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sprintf(se, "%+.2d", atoi(se) + 1 - scale);
data/xppaut-6.11b+1.dfsg/wref.c:173:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *b, buf[MAXINTDIGS+MAXFRACDIGS+4], *s;
data/xppaut-6.11b+1.dfsg/wref.c:204:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(b = buf, "%#.*f", d, x);
data/xppaut-6.11b+1.dfsg/wref.c:207:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
n = sprintf(b = buf, "%#.*f", d, x) + d1;
data/xppaut-6.11b+1.dfsg/adj2.c:186:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(coup_string[i],"0");
data/xppaut-6.11b+1.dfsg/aniparse.c:1040:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write(fd,head,strlen(head));
data/xppaut-6.11b+1.dfsg/aniparse.c:1303:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if((nxt==NULL)||strlen(nxt)==0)break;
data/xppaut-6.11b+1.dfsg/aniparse.c:1306:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if((nxt==NULL)||strlen(nxt)==0)break;
data/xppaut-6.11b+1.dfsg/aniparse.c:1317:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if((nxt==NULL)||strlen(nxt)==0)break;
data/xppaut-6.11b+1.dfsg/aniparse.c:1320:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if((nxt==NULL)||strlen(nxt)==0)break;
data/xppaut-6.11b+1.dfsg/aniparse.c:1337:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if((nxt==NULL)||strlen(nxt)==0)break;
data/xppaut-6.11b+1.dfsg/aniparse.c:1352:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if((nxt==NULL)||strlen(nxt)==0)break;
data/xppaut-6.11b+1.dfsg/aniparse.c:1574:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(s)==0){
data/xppaut-6.11b+1.dfsg/aniparse.c:2375:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n=strlen(s);
data/xppaut-6.11b+1.dfsg/aniparse.c:2389:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n=strlen(s2);
data/xppaut-6.11b+1.dfsg/aniparse.c:2440:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n=strlen(temp);
data/xppaut-6.11b+1.dfsg/aniparse.c:2451:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n=strlen(s);
data/xppaut-6.11b+1.dfsg/aniparse.c:2462:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(s);
data/xppaut-6.11b+1.dfsg/aniparse.c:2534:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(line);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:798:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write(fd,head,strlen(head));
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1005:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if((nxt==NULL)||strlen(nxt)==0)break;
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1008:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if((nxt==NULL)||strlen(nxt)==0)break;
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1019:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if((nxt==NULL)||strlen(nxt)==0)break;
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1022:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if((nxt==NULL)||strlen(nxt)==0)break;
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1039:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if((nxt==NULL)||strlen(nxt)==0)break;
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1054:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if((nxt==NULL)||strlen(nxt)==0)break;
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1265:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(s)==0){
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1976:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n=strlen(s);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:1990:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n=strlen(s2);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:2039:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nn=strlen(temp)+1;
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:2040:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n=strlen(temp);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:2051:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n=strlen(s);
data/xppaut-6.11b+1.dfsg/aniparse_avi.c:2062:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(s);
data/xppaut-6.11b+1.dfsg/arrayplot.c:225:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(ap->bottom,"");
data/xppaut-6.11b+1.dfsg/arrayplot.c:442:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(s);
data/xppaut-6.11b+1.dfsg/arrayplot.c:652:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,ap.wtime,small_gc,0,CURY_OFFs,bob,strlen(bob));
data/xppaut-6.11b+1.dfsg/arrayplot.c:685:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,aplot.wplot,small_gc,0,CURY_OFFs,bob,strlen(bob));
data/xppaut-6.11b+1.dfsg/arrayplot.c:718:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,small_gc,0,CURY_OFFs,bob,strlen(bob));
data/xppaut-6.11b+1.dfsg/arrayplot.c:723:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,small_gc,0,CURY_OFFs,bob,strlen(bob));
data/xppaut-6.11b+1.dfsg/auto.c:150:75: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define ATEXT(a,b,c) XDrawString(display,Auto.canvas,small_gc,(a),(b),(c),strlen(c))
data/xppaut-6.11b+1.dfsg/auto.c:161:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define xds(a) { XDrawString(display,w,gc,2,CURY_OFFs,a,strlen(a));return;}
data/xppaut-6.11b+1.dfsg/auto.c:266:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ii=strlen(junk)*DCURXs;
data/xppaut-6.11b+1.dfsg/auto.c:269:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ii=strlen(junk);
data/xppaut-6.11b+1.dfsg/auto.c:274:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ii=strlen(junk);
data/xppaut-6.11b+1.dfsg/auto.c:388:11: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while((c=getc(fo))!=EOF)
data/xppaut-6.11b+1.dfsg/auto.c:408:11: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while((c=getc(fo))!= EOF)
data/xppaut-6.11b+1.dfsg/auto.c:411:11: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while((c=getc(fn))!=EOF)
data/xppaut-6.11b+1.dfsg/auto.c:509:5: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
sprintf(s,"T");
data/xppaut-6.11b+1.dfsg/auto.c:565:10: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
else sprintf(values[i],"");
data/xppaut-6.11b+1.dfsg/auto.c:1025:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,Auto.info,small_gc,10,DCURYs+1,bob,strlen(bob));
data/xppaut-6.11b+1.dfsg/auto.c:1042:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,Auto.info,small_gc,10,2*DCURYs+2,bob,strlen(bob));
data/xppaut-6.11b+1.dfsg/auto.c:1356:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,gc,8,CURY_OFF,Auto.hinttxt,strlen(Auto.hinttxt));
data/xppaut-6.11b+1.dfsg/auto.c:1368:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int width=strlen(name)*DCURX+5;
data/xppaut-6.11b+1.dfsg/auto.c:2214:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(s);
data/xppaut-6.11b+1.dfsg/auto_nox.c:308:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ii=strlen(junk)*DCURXs;
data/xppaut-6.11b+1.dfsg/auto_nox.c:311:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ii=strlen(junk);
data/xppaut-6.11b+1.dfsg/auto_nox.c:316:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ii=strlen(junk);
data/xppaut-6.11b+1.dfsg/auto_nox.c:364:11: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while((c=getc(fo))!=EOF)
data/xppaut-6.11b+1.dfsg/auto_nox.c:385:11: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while((c=getc(fo))!= EOF)
data/xppaut-6.11b+1.dfsg/auto_nox.c:388:11: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while((c=getc(fn))!=EOF)
data/xppaut-6.11b+1.dfsg/auto_nox.c:508:5: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
sprintf(s,"T");
data/xppaut-6.11b+1.dfsg/auto_nox.c:2202:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(s);
data/xppaut-6.11b+1.dfsg/auto_x11.c:46:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define xds(a) { XDrawString(display,w,gc,5,CURY_OFFb,a,strlen(a));return;}
data/xppaut-6.11b+1.dfsg/auto_x11.c:129:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,AutoW.canvas,small_gc,(a),(b),(c),strlen(c));
data/xppaut-6.11b+1.dfsg/auto_x11.c:503:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,AutoW.info,small_gc,x,y,bob,strlen(bob));
data/xppaut-6.11b+1.dfsg/auto_x11.c:681:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,gc,8,CURY_OFF,Auto.hinttxt,strlen(Auto.hinttxt));
data/xppaut-6.11b+1.dfsg/axes2.c:57:27: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if((i=MyGraph->xv[0])==0)strcpy(s1,"T");
data/xppaut-6.11b+1.dfsg/axes2.c:60:26: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if((i=MyGraph->yv[0])==0)strcpy(s2,"T");
data/xppaut-6.11b+1.dfsg/axes2.c:63:26: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if((i=MyGraph->zv[0])==0)strcpy(s3,"T");
data/xppaut-6.11b+1.dfsg/axes2.c:74:27: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if((i=MyGraph->xv[0])==0)strcpy(name1,"T");
data/xppaut-6.11b+1.dfsg/axes2.c:77:26: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if((i=MyGraph->yv[0])==0)strcpy(name2,"T");
data/xppaut-6.11b+1.dfsg/axes2.c:80:26: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if((i=MyGraph->zv[0])==0)strcpy(name3,"T");
data/xppaut-6.11b+1.dfsg/browse.c:36:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define xds(a) { XDrawString(display,w,small_gc,5,CURY_OFFs,a,strlen(a));\
data/xppaut-6.11b+1.dfsg/browse.c:270:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(var,"");
data/xppaut-6.11b+1.dfsg/browse.c:285:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(var,"");
data/xppaut-6.11b+1.dfsg/browse.c:286:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(form,"");
data/xppaut-6.11b+1.dfsg/browse.c:346:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(f);
data/xppaut-6.11b+1.dfsg/browse.c:392:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
while(i<strlen(form)){
data/xppaut-6.11b+1.dfsg/browse.c:627:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,small_gc,8,CURY_OFFs,b.hinttxt,strlen(b.hinttxt));
data/xppaut-6.11b+1.dfsg/browse.c:658:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
uvar_names[i0],strlen(uvar_names[i0]));
data/xppaut-6.11b+1.dfsg/browse.c:679:2: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(uvar_names[i0]));
data/xppaut-6.11b+1.dfsg/browse.c:730:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string,strlen(string));
data/xppaut-6.11b+1.dfsg/browse.c:745:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string,strlen(string));
data/xppaut-6.11b+1.dfsg/browse.c:813:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int width=strlen(name)*DCURXs;
data/xppaut-6.11b+1.dfsg/browse.c:1563:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(sp);
data/xppaut-6.11b+1.dfsg/calc.c:64:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,small_gc,0,CURY_OFFs,bob,strlen(bob));
data/xppaut-6.11b+1.dfsg/calc.c:125:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(value," ");
data/xppaut-6.11b+1.dfsg/calc.c:127:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*pos=strlen(value);
data/xppaut-6.11b+1.dfsg/calc.c:128:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*col=(*pos+strlen(name))*DCURX;
data/xppaut-6.11b+1.dfsg/calc.c:174:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(temp)==0){
data/xppaut-6.11b+1.dfsg/calc.c:218:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(i=0;i<strlen(z);i++)
data/xppaut-6.11b+1.dfsg/calc.c:220:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(i==strlen(z))return(0);
data/xppaut-6.11b+1.dfsg/calc.c:221:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(w,z,i);
data/xppaut-6.11b+1.dfsg/choice_box.c:58:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,gc,0,CURY_OFF,p.name[i],strlen(p.name[i]));
data/xppaut-6.11b+1.dfsg/cli.c:51:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ll=MAX_LEN_SBOX-strlen(item);
data/xppaut-6.11b+1.dfsg/cli.c:81:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
k=strlen(bob);
data/xppaut-6.11b+1.dfsg/cli.c:126:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(s);
data/xppaut-6.11b+1.dfsg/cli.c:180:4: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n=strlen(bob);
data/xppaut-6.11b+1.dfsg/cli.c:200:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(done==0||strlen(tvalue)==0)return -1;
data/xppaut-6.11b+1.dfsg/cli.c:231:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(new_string(name,svalue)==0||strlen(svalue)==0)return(-1);
data/xppaut-6.11b+1.dfsg/comline.c:275:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(argv[i+1]) != 6)
data/xppaut-6.11b+1.dfsg/comline.c:285:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(argv[i+1]) != 6)
data/xppaut-6.11b+1.dfsg/comline.c:310:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(argv[i+1]) != 6)
data/xppaut-6.11b+1.dfsg/comline.c:318:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(argv[i+1]) != 6)
data/xppaut-6.11b+1.dfsg/comlineold.c:268:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(argv[i+1]) != 6)
data/xppaut-6.11b+1.dfsg/comlineold.c:278:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(argv[i+1]) != 6)
data/xppaut-6.11b+1.dfsg/comlineold.c:304:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(argv[i+1]) != 6)
data/xppaut-6.11b+1.dfsg/comlineold.c:312:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(argv[i+1]) != 6)
data/xppaut-6.11b+1.dfsg/cv2.c:66:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(s,"");
data/xppaut-6.11b+1.dfsg/cv2.c:68:11: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
case 0: strcpy(s,"");
data/xppaut-6.11b+1.dfsg/cv2.c:90:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(s)>0)
data/xppaut-6.11b+1.dfsg/dae_fun.c:97:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
aeqn[naeqn].rhs=(char *) malloc(strlen(rhs)+5);
data/xppaut-6.11b+1.dfsg/derived.c:73:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(rhs)+2;
data/xppaut-6.11b+1.dfsg/dfe.c:86:3: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
getc(cf);
data/xppaut-6.11b+1.dfsg/dfe.c:94:9: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if((ch=getc(cf))!=EOF)
data/xppaut-6.11b+1.dfsg/dialog_box.c:47:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int lm=strlen(name)*DCURX;
data/xppaut-6.11b+1.dfsg/dialog_box.c:50:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int lo=strlen(ok)*DCURX;
data/xppaut-6.11b+1.dfsg/dialog_box.c:51:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int lc=strlen(cancel)*DCURX;
data/xppaut-6.11b+1.dfsg/dialog_box.c:94:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pos=strlen(d.input_s);
data/xppaut-6.11b+1.dfsg/dialog_box.c:180:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,gc,0,CURY_OFF+1,d.ok_s,strlen(d.ok_s));
data/xppaut-6.11b+1.dfsg/dialog_box.c:182:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,gc,0,CURY_OFF+1,d.cancel_s,strlen(d.cancel_s));
data/xppaut-6.11b+1.dfsg/dialog_box.c:184:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,gc,0,CURY_OFF+1,d.mes_s,strlen(d.mes_s));
data/xppaut-6.11b+1.dfsg/dialog_box.c:186:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,gc,0,CURY_OFF,d.input_s,strlen(d.input_s));
data/xppaut-6.11b+1.dfsg/do_fit.c:814:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(j=0;j<strlen(parlist);j++){
data/xppaut-6.11b+1.dfsg/do_fit.c:817:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(j==strlen(parlist))return;
data/xppaut-6.11b+1.dfsg/do_fit.c:818:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(parlist)==0)return;
data/xppaut-6.11b+1.dfsg/edit_rhs.c:91:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l=strlen(sb->name[i]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:95:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sb->value[i],strlen(sb->value[i]));
data/xppaut-6.11b+1.dfsg/edit_rhs.c:99:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*pos=strlen(sb->value[0]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:100:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*col=(*pos+strlen(sb->name[0]))*DCURX;
data/xppaut-6.11b+1.dfsg/edit_rhs.c:101:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
put_cursor_at(sb->win[0],DCURX*strlen(sb->name[0]),*pos);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:124:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pos=strlen(sb.value[0]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:125:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
colm=(pos+strlen(sb.name[0]))*DCURX;
data/xppaut-6.11b+1.dfsg/edit_rhs.c:176:3: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(sb->value[inew]),0);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:179:3: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(sb->value[i]),0);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:190:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*pos=strlen(sb->value[inew]);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:191:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*col=(*pos+strlen(sb->name[inew]))*DCURX;
data/xppaut-6.11b+1.dfsg/edit_rhs.c:375:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ode_names[i]=(char *)malloc(strlen(values[i])+5);
data/xppaut-6.11b+1.dfsg/edit_rhs.c:408:2: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(fundef,",");
data/xppaut-6.11b+1.dfsg/eig_list.c:22:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define xds(a) { XDrawString(display,w,small_gc,5,CURY_OFFs,a,strlen(a));\
data/xppaut-6.11b+1.dfsg/eig_list.c:96:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bob,strlen(bob));
data/xppaut-6.11b+1.dfsg/eig_list.c:376:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(eq_box.type));
data/xppaut-6.11b+1.dfsg/eig_list.c:381:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,eq_box.stab,small_gc,2,2*DCURY+6,temp,strlen(temp));
data/xppaut-6.11b+1.dfsg/eig_list.c:383:69: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,eq_box.stab,small_gc,2+9*DCURXs,2*DCURY+6,temp,strlen(temp));
data/xppaut-6.11b+1.dfsg/eig_list.c:386:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
temp,strlen(temp));
data/xppaut-6.11b+1.dfsg/eig_list.c:388:69: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,eq_box.stab,small_gc,2,2*DCURY+2*DCURYs+6,temp,strlen(temp));
data/xppaut-6.11b+1.dfsg/eig_list.c:391:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
temp,strlen(temp));
data/xppaut-6.11b+1.dfsg/eig_list.c:406:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
temp,strlen(temp));
data/xppaut-6.11b+1.dfsg/endfile.c:42:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while((n = read(k, buf, len > BUFSIZ ? BUFSIZ : (int)len)) > 0) {
data/xppaut-6.11b+1.dfsg/extra.c:170:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l1=strlen(in);
data/xppaut-6.11b+1.dfsg/extra.c:171:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l2=strlen(out);
data/xppaut-6.11b+1.dfsg/extra.c:203:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l=strlen(s);
data/xppaut-6.11b+1.dfsg/extra.c:287:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(i>strlen(l))
data/xppaut-6.11b+1.dfsg/flags.c:125:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l=strlen(cond);
data/xppaut-6.11b+1.dfsg/flags.c:131:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l=strlen(rest);
data/xppaut-6.11b+1.dfsg/flags.c:141:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lt=strlen(temp);
data/xppaut-6.11b+1.dfsg/form_ode.c:173:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n=strlen(save_eqn[i]);
data/xppaut-6.11b+1.dfsg/form_ode.c:184:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int i=0,l=strlen(string),j=0,flag=0;
data/xppaut-6.11b+1.dfsg/form_ode.c:253:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l=strlen(s[i]);
data/xppaut-6.11b+1.dfsg/form_ode.c:312:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int m = strlen(filename);
data/xppaut-6.11b+1.dfsg/form_ode.c:315:6: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(filename,"/");
data/xppaut-6.11b+1.dfsg/form_ode.c:404:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nn=strlen(bob)+1;
data/xppaut-6.11b+1.dfsg/form_ode.c:414:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(save_eqn[NLINES++],bob,nn);
data/xppaut-6.11b+1.dfsg/form_ode.c:429:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(this_file)==0)
data/xppaut-6.11b+1.dfsg/form_ode.c:442:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nn=strlen(bob)+1;
data/xppaut-6.11b+1.dfsg/form_ode.c:444:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(save_eqn[NLINES++],bob,nn);
data/xppaut-6.11b+1.dfsg/form_ode.c:469:7: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(my_bc[i].string,"0");
data/xppaut-6.11b+1.dfsg/form_ode.c:741:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nn=strlen(save_eqn[nlin]);
data/xppaut-6.11b+1.dfsg/form_ode.c:923:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nn=strlen(formula)+1;
data/xppaut-6.11b+1.dfsg/form_ode.c:1051:4: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l=strlen(bob);
data/xppaut-6.11b+1.dfsg/form_ode.c:1060:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(name,bob,k);
data/xppaut-6.11b+1.dfsg/form_ode.c:1074:4: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l=strlen(bob);
data/xppaut-6.11b+1.dfsg/form_ode.c:1116:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(string),j;
data/xppaut-6.11b+1.dfsg/form_ode.c:1150:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(j=0;j<strlen(name);j++){
data/xppaut-6.11b+1.dfsg/form_ode.c:1202:11: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return(getchar());
data/xppaut-6.11b+1.dfsg/form_ode.c:1287:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(old);
data/xppaut-6.11b+1.dfsg/form_ode.c:1418:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strings[0]=(char *)malloc(strlen(new)+10);
data/xppaut-6.11b+1.dfsg/form_ode.c:1427:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strings[nstrings]=(char *)malloc(strlen(old)+10);
data/xppaut-6.11b+1.dfsg/form_ode.c:1527:14: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(v.rhs,"0");
data/xppaut-6.11b+1.dfsg/form_ode.c:1533:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strpiece(v.rhs,big,i1+1,strlen(big));
data/xppaut-6.11b+1.dfsg/form_ode.c:1545:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strpiece(v.rhs,big,i1+1,strlen(big));
data/xppaut-6.11b+1.dfsg/form_ode.c:1555:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strpiece(v.rhs,big,i1+1,strlen(big));
data/xppaut-6.11b+1.dfsg/form_ode.c:1565:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strpiece(v.rhs,big,i1+1,strlen(big));
data/xppaut-6.11b+1.dfsg/form_ode.c:1583:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strpiece(v.rhs,big,i1+1,strlen(big));
data/xppaut-6.11b+1.dfsg/form_ode.c:1599:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strpiece(v.rhs,big,i1+1,strlen(big));
data/xppaut-6.11b+1.dfsg/form_ode.c:1672:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(s)<1)return;
data/xppaut-6.11b+1.dfsg/form_ode.c:1682:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int i=0,j=0,l=strlen(rhs);
data/xppaut-6.11b+1.dfsg/form_ode.c:1816:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fixinfo[nfix].name=(char *)malloc(strlen(v->lhs)+2);
data/xppaut-6.11b+1.dfsg/form_ode.c:1817:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fixinfo[nfix].value=(char *)malloc(strlen(v->rhs)+2);
data/xppaut-6.11b+1.dfsg/form_ode.c:1995:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nn=strlen(v->rhs)+1;
data/xppaut-6.11b+1.dfsg/form_ode.c:2040:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nn=strlen(v->rhs)+1;
data/xppaut-6.11b+1.dfsg/form_ode.c:2065:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nn=strlen(v->rhs)+1;
data/xppaut-6.11b+1.dfsg/form_ode.c:2071:8: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(ode_names[IN_VARS+nmark],v->rhs,nn);
data/xppaut-6.11b+1.dfsg/form_ode.c:2166:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(i<strlen(form))flag=1;
data/xppaut-6.11b+1.dfsg/form_ode.c:2190:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n1=strlen(s1)-1;
data/xppaut-6.11b+1.dfsg/form_ode.c:2206:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(s1)<1){
data/xppaut-6.11b+1.dfsg/form_ode.c:2415:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int i=0,n=strlen(s1);
data/xppaut-6.11b+1.dfsg/form_ode.c:2433:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(s1);
data/xppaut-6.11b+1.dfsg/form_ode.c:2434:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int m=strlen(s2);
data/xppaut-6.11b+1.dfsg/form_ode.c:2482:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int k,i=i0,n=strlen(s1);
data/xppaut-6.11b+1.dfsg/form_ode.c:2514:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int m=strlen(s2),n=strlen(s1);
data/xppaut-6.11b+1.dfsg/form_ode.c:2514:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int m=strlen(s2),n=strlen(s1);
data/xppaut-6.11b+1.dfsg/form_ode.c:2536:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(s1);
data/xppaut-6.11b+1.dfsg/form_ode.c:2554:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int i=0,n=strlen(s1),l;
data/xppaut-6.11b+1.dfsg/form_ode.c:2587:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nn=strlen(temp)+1;
data/xppaut-6.11b+1.dfsg/form_ode.c:2589:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(save_eqn[NLINES++],temp,nn);
data/xppaut-6.11b+1.dfsg/form_ode.c:2592:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n=strlen(temp);
data/xppaut-6.11b+1.dfsg/form_ode.c:2603:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n=strlen(s);
data/xppaut-6.11b+1.dfsg/form_ode.c:2623:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(old);
data/xppaut-6.11b+1.dfsg/form_ode.c:2631:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(num1,"0");
data/xppaut-6.11b+1.dfsg/form_ode.c:2632:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(num2,"0");
data/xppaut-6.11b+1.dfsg/form_ode.c:2724:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(big);
data/xppaut-6.11b+1.dfsg/form_ode.c:2753:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(s);
data/xppaut-6.11b+1.dfsg/form_ode.c:2774:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int i,n=strlen(big),inew,add,inum,j,m,isign,ok,multflag=0;
data/xppaut-6.11b+1.dfsg/form_ode.c:2801:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
m=strlen(num);
data/xppaut-6.11b+1.dfsg/form_ode.c:2861:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
m=strlen(num);
data/xppaut-6.11b+1.dfsg/form_ode.c:2898:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
orig_comments[i].text=(char *)malloc(strlen(comments[i].text)+1);
data/xppaut-6.11b+1.dfsg/form_ode.c:2900:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
orig_comments[i].action=(char *)malloc(strlen(comments[i].action)+1);
data/xppaut-6.11b+1.dfsg/form_ode.c:2916:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
comments[i].text=(char *)malloc(strlen(orig_comments[i].text)+1);
data/xppaut-6.11b+1.dfsg/form_ode.c:2919:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
comments[i].action=(char *)malloc(strlen(orig_comments[i].action)+1);
data/xppaut-6.11b+1.dfsg/form_ode.c:2956:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(s);
data/xppaut-6.11b+1.dfsg/form_ode.c:2967:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
comments[n_comments].text=(char *)malloc(strlen(s)+1);
data/xppaut-6.11b+1.dfsg/form_ode.c:3000:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
comments[n_comments].text=(char *)malloc(strlen(text)+1);
data/xppaut-6.11b+1.dfsg/form_ode.c:3002:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
comments[n_comments].action=(char *)malloc(strlen(action)+1);
data/xppaut-6.11b+1.dfsg/ggets.c:146:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(info_message));
data/xppaut-6.11b+1.dfsg/ggets.c:157:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,info_pop,gc,5,CURY_OFF,msg,strlen(msg));
data/xppaut-6.11b+1.dfsg/ggets.c:171:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CURS_X+=strlen(string);
data/xppaut-6.11b+1.dfsg/ggets.c:243:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CURS_X=strlen(string);
data/xppaut-6.11b+1.dfsg/ggets.c:253:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CURS_X=strlen(string);
data/xppaut-6.11b+1.dfsg/ggets.c:307:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(string,"");
data/xppaut-6.11b+1.dfsg/ggets.c:385:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,o,gc,x,y+CURY_OFF,string,strlen(string));
data/xppaut-6.11b+1.dfsg/ggets.c:448:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(done==0||strlen(tvalue)==0)return -1;
data/xppaut-6.11b+1.dfsg/ggets.c:480:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(new_string(name,svalue)==0||strlen(svalue)==0)return(-1);
data/xppaut-6.11b+1.dfsg/ggets.c:492:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l=strlen(name);
data/xppaut-6.11b+1.dfsg/ggets.c:493:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int m=strlen(value);
data/xppaut-6.11b+1.dfsg/ggets.c:531:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l=strlen(s)-off;
data/xppaut-6.11b+1.dfsg/ggets.c:570:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(*pos<strlen(value)){ *pos=*pos+1; *col+=DCURX;}
data/xppaut-6.11b+1.dfsg/ggets.c:575:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
case END: { *pos=strlen(value); *col=*pos*DCURX+col0;}
data/xppaut-6.11b+1.dfsg/ggets.c:600:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmov(&value[*pos-1],&value[*pos],strlen(value)-*pos+1);
data/xppaut-6.11b+1.dfsg/ggets.c:614:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
movmem(&value[*pos+1],&value[*pos],strlen(value)-*pos+1);
data/xppaut-6.11b+1.dfsg/ggets.c:622:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
clr_line_at(w,col0,0,strlen(value));
data/xppaut-6.11b+1.dfsg/ggets.c:687:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int pos=strlen(value);
data/xppaut-6.11b+1.dfsg/ggets.c:688:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int col=(pos+strlen(name))*DCURX;
data/xppaut-6.11b+1.dfsg/ggetsold.c:130:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(info_message));
data/xppaut-6.11b+1.dfsg/ggetsold.c:140:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,info_pop,gc,5,CURY_OFF,msg,strlen(msg));
data/xppaut-6.11b+1.dfsg/ggetsold.c:154:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CURS_X+=strlen(string);
data/xppaut-6.11b+1.dfsg/ggetsold.c:201:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CURS_X=strlen(string);
data/xppaut-6.11b+1.dfsg/ggetsold.c:211:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CURS_X=strlen(string);
data/xppaut-6.11b+1.dfsg/ggetsold.c:265:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(string,"");
data/xppaut-6.11b+1.dfsg/ggetsold.c:343:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,o,gc,x,y+CURY_OFF,string,strlen(string));
data/xppaut-6.11b+1.dfsg/ggetsold.c:406:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(done==0||strlen(tvalue)==0)return -1;
data/xppaut-6.11b+1.dfsg/ggetsold.c:438:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(new_string(name,svalue)==0||strlen(svalue)==0)return(-1);
data/xppaut-6.11b+1.dfsg/ggetsold.c:450:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l=strlen(name);
data/xppaut-6.11b+1.dfsg/ggetsold.c:451:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int m=strlen(value);
data/xppaut-6.11b+1.dfsg/ggetsold.c:489:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l=strlen(s)-off;
data/xppaut-6.11b+1.dfsg/ggetsold.c:528:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(*pos<strlen(value)){ *pos=*pos+1; *col+=DCURX;}
data/xppaut-6.11b+1.dfsg/ggetsold.c:533:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
case END: { *pos=strlen(value); *col=*pos*DCURX+col0;}
data/xppaut-6.11b+1.dfsg/ggetsold.c:558:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmov(&value[*pos-1],&value[*pos],strlen(value)-*pos+1);
data/xppaut-6.11b+1.dfsg/ggetsold.c:572:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
movmem(&value[*pos+1],&value[*pos],strlen(value)-*pos+1);
data/xppaut-6.11b+1.dfsg/ggetsold.c:580:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
clr_line_at(w,col0,0,strlen(value));
data/xppaut-6.11b+1.dfsg/ggetsold.c:645:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int pos=strlen(value);
data/xppaut-6.11b+1.dfsg/ggetsold.c:646:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int col=(pos+strlen(name))*DCURX;
data/xppaut-6.11b+1.dfsg/graf_par.c:116:12: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if(ind==0)strcpy(str,"T");
data/xppaut-6.11b+1.dfsg/graf_par.c:1119:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(frz[i].use==1&&frz[i].w==draw_win&&strlen(frz[i].key)>0){
data/xppaut-6.11b+1.dfsg/graphics.c:274:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XSetDashes(display,gc_graph,0,dashes[1],strlen(dashes[1]));
data/xppaut-6.11b+1.dfsg/graphics.c:284:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XSetDashes(display,gc_graph,0,dashes[ls],strlen(dashes[ls]));
data/xppaut-6.11b+1.dfsg/graphics.c:318:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int sw=strlen(str)*DCURXs;
data/xppaut-6.11b+1.dfsg/graphics.c:325:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,draw_win,small_gc,x+sw,y+DCURYs/3,str,strlen(str));
data/xppaut-6.11b+1.dfsg/graphics.c:337:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(str),dx=0;
data/xppaut-6.11b+1.dfsg/graphics.c:361:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dx=XTextWidth(romfonts[cs],tmp,strlen(tmp));
data/xppaut-6.11b+1.dfsg/graphics.c:363:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dx=XTextWidth(small_font,tmp,strlen(tmp));
data/xppaut-6.11b+1.dfsg/graphics.c:367:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dx=XTextWidth(symfonts[cs],tmp,strlen(tmp));
data/xppaut-6.11b+1.dfsg/graphics.c:369:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dx=XTextWidth(small_font,tmp,strlen(tmp));
data/xppaut-6.11b+1.dfsg/graphics.c:420:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(str)==0)return;
data/xppaut-6.11b+1.dfsg/graphics.c:434:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,draw_win,font_gc,x,y,str,strlen(str));
data/xppaut-6.11b+1.dfsg/graphics.c:448:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,draw_win,font_gc,x,y,str,strlen(str));
data/xppaut-6.11b+1.dfsg/graphics.c:614:5: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(graph[i].gr_info,"");
data/xppaut-6.11b+1.dfsg/graphics.c:1050:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int i,l=strlen(old);
data/xppaut-6.11b+1.dfsg/graphics.c:1074:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(k=0;k<strlen(val);k++){
data/xppaut-6.11b+1.dfsg/histogram.c:270:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(condition)==0)cond=0;
data/xppaut-6.11b+1.dfsg/histogram.c:371:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(variable,"t");
data/xppaut-6.11b+1.dfsg/init_condold.c:144:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int m=strlen(v);
data/xppaut-6.11b+1.dfsg/init_condold.c:188:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sl.v[j],strlen(sl.v[j]));
data/xppaut-6.11b+1.dfsg/init_condold.c:226:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(j=0;j<strlen(oname);j++){
data/xppaut-6.11b+1.dfsg/init_condold.c:281:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(values[0])==0){ /* empty string cancels */
data/xppaut-6.11b+1.dfsg/init_condold.c:436:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,small_gc,x,CURY_OFFs,top,strlen(top));
data/xppaut-6.11b+1.dfsg/init_condold.c:442:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(top)<12)
data/xppaut-6.11b+1.dfsg/init_condold.c:443:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
x=len-DCURXs*strlen(top)-1;
data/xppaut-6.11b+1.dfsg/init_condold.c:445:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,small_gc,x,CURY_OFFs,top,strlen(top));
data/xppaut-6.11b+1.dfsg/init_condold.c:451:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,small_gc,2,CURY_OFFs,top,strlen(top));
data/xppaut-6.11b+1.dfsg/init_condold.c:459:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,small_gc,x,CURY_OFFs,top,strlen(top));
data/xppaut-6.11b+1.dfsg/init_condold.c:674:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n1=strlen(s1)*DCURXs,nt=10*DCURXs;
data/xppaut-6.11b+1.dfsg/init_condold.c:678:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w1,small_gc,i,CURY_OFFs,s1,strlen(s1));
data/xppaut-6.11b+1.dfsg/init_condold.c:966:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(name)==0||done==0)return;
data/xppaut-6.11b+1.dfsg/init_condold.c:1017:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l=strlen(string)-off,rev,cp;
data/xppaut-6.11b+1.dfsg/init_condold.c:1052:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l=strlen(string),wpos=pos-off;
data/xppaut-6.11b+1.dfsg/init_condold.c:1129:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(string)>=256)
data/xppaut-6.11b+1.dfsg/init_condold.c:1172:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l=strlen(string);
data/xppaut-6.11b+1.dfsg/init_conds.c:172:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int m=strlen(v);
data/xppaut-6.11b+1.dfsg/init_conds.c:217:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sl.v[j],strlen(sl.v[j]));
data/xppaut-6.11b+1.dfsg/init_conds.c:328:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(j=0;j<strlen(oname);j++){
data/xppaut-6.11b+1.dfsg/init_conds.c:392:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(values[0])==0){ /* empty string cancels */
data/xppaut-6.11b+1.dfsg/init_conds.c:464:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(flag)filesel.pos=strlen(string);
data/xppaut-6.11b+1.dfsg/init_conds.c:465:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,small_gc,0,CURY_OFF,string,strlen(string));
data/xppaut-6.11b+1.dfsg/init_conds.c:466:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(flag)put_edit_cursor(w,DCURXs*strlen(string));
data/xppaut-6.11b+1.dfsg/init_conds.c:485:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
f.filetxt,strlen(f.filetxt));}
data/xppaut-6.11b+1.dfsg/init_conds.c:488:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CURY_OFFs,f.wildtxt,strlen(f.wildtxt));}
data/xppaut-6.11b+1.dfsg/init_conds.c:495:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,small_gc,0,CURY_OFFs,t,strlen(t));
data/xppaut-6.11b+1.dfsg/init_conds.c:511:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,small_gc,5,CURY_OFFs,t,strlen(t));
data/xppaut-6.11b+1.dfsg/init_conds.c:555:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(filesel.hot!=HOTFILE)filesel.pos=strlen(filesel.filetxt);
data/xppaut-6.11b+1.dfsg/init_conds.c:564:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(filesel.hot!=HOTWILD)filesel.pos=strlen(filesel.wildtxt);
data/xppaut-6.11b+1.dfsg/init_conds.c:586:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int m = strlen(filesel.filetxt);
data/xppaut-6.11b+1.dfsg/init_conds.c:589:8: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(filesel.filetxt,"/");
data/xppaut-6.11b+1.dfsg/init_conds.c:735:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
filesel.pos=strlen(filesel.filetxt);
data/xppaut-6.11b+1.dfsg/init_conds.c:743:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int m = strlen(target);
data/xppaut-6.11b+1.dfsg/init_conds.c:744:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n = strlen(sother);
data/xppaut-6.11b+1.dfsg/init_conds.c:767:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l=strlen(string),cp;
data/xppaut-6.11b+1.dfsg/init_conds.c:870:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int m = strlen(filesel.filetxt);
data/xppaut-6.11b+1.dfsg/init_conds.c:873:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(filesel.filetxt,"/");
data/xppaut-6.11b+1.dfsg/init_conds.c:882:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int m=strlen(filesel.filetxt)+1;
data/xppaut-6.11b+1.dfsg/init_conds.c:908:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (m> strlen(filesel.filetxt))
data/xppaut-6.11b+1.dfsg/init_conds.c:912:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (n=0;n<strlen(filesel.filetxt)-m;n++)
data/xppaut-6.11b+1.dfsg/init_conds.c:917:6: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(ft,"*");
data/xppaut-6.11b+1.dfsg/init_conds.c:940:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int m = strlen(filesel.filetxt);
data/xppaut-6.11b+1.dfsg/init_conds.c:943:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(filesel.filetxt,"/");
data/xppaut-6.11b+1.dfsg/init_conds.c:976:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(U) == 0)/*No common substring*/
data/xppaut-6.11b+1.dfsg/init_conds.c:994:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(string)>=256)
data/xppaut-6.11b+1.dfsg/init_conds.c:1017:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,small_gc,0,CURY_OFF,string+off,strlen(string)-off);
data/xppaut-6.11b+1.dfsg/init_conds.c:1235:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,small_gc,x,CURY_OFFs,top,strlen(top));
data/xppaut-6.11b+1.dfsg/init_conds.c:1241:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(top)<12)
data/xppaut-6.11b+1.dfsg/init_conds.c:1242:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
x=len-DCURXs*strlen(top)-1;
data/xppaut-6.11b+1.dfsg/init_conds.c:1244:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,small_gc,x,CURY_OFFs,top,strlen(top));
data/xppaut-6.11b+1.dfsg/init_conds.c:1250:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,small_gc,2,CURY_OFFs,top,strlen(top));
data/xppaut-6.11b+1.dfsg/init_conds.c:1258:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w,small_gc,x,CURY_OFFs,top,strlen(top));
data/xppaut-6.11b+1.dfsg/init_conds.c:1614:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
b->iname=(char *)malloc(strlen(iname)+5);
data/xppaut-6.11b+1.dfsg/init_conds.c:1616:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
b->wname=(char *)malloc(strlen(wname)+5);
data/xppaut-6.11b+1.dfsg/init_conds.c:1670:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n1=strlen(s1)*DCURXs,nt=10*DCURXs;
data/xppaut-6.11b+1.dfsg/init_conds.c:1675:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,w1,small_gc,i,CURY_OFFs,s1,strlen(s1));
data/xppaut-6.11b+1.dfsg/init_conds.c:2164:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(name)==0||done==0){redo_stuff(); return;}
data/xppaut-6.11b+1.dfsg/init_conds.c:2251:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l=strlen(string)-off,rev,cp;
data/xppaut-6.11b+1.dfsg/init_conds.c:2289:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l=strlen(string),wpos=pos-off;
data/xppaut-6.11b+1.dfsg/init_conds.c:2374:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(string)>=256)
data/xppaut-6.11b+1.dfsg/init_conds.c:2419:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l=strlen(string);
data/xppaut-6.11b+1.dfsg/integrate.c:498:3: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
sprintf(values[11],"2");
data/xppaut-6.11b+1.dfsg/integrate.c:500:4: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
sprintf(values[11],"1");
data/xppaut-6.11b+1.dfsg/integrate.c:969:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(UserOUTFILE)==0) /*Use the set name for outfile name*/
data/xppaut-6.11b+1.dfsg/integrate.c:1493:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n=strlen(big);
data/xppaut-6.11b+1.dfsg/kinescope.c:175:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(base)>0)
data/xppaut-6.11b+1.dfsg/kinescope_avi.c:150:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(base)>0)
data/xppaut-6.11b+1.dfsg/lio.c:53:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(recpos+strlen(buf)>=LINE)
data/xppaut-6.11b+1.dfsg/load_eqn.c:455:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(big_font_name)==0)
data/xppaut-6.11b+1.dfsg/load_eqn.c:460:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(small_font_name)==0)
data/xppaut-6.11b+1.dfsg/load_eqn.c:465:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(UserBlack)==0)
data/xppaut-6.11b+1.dfsg/load_eqn.c:470:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(UserWhite)==0)
data/xppaut-6.11b+1.dfsg/load_eqn.c:475:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(UserMainWinColor)==0)
data/xppaut-6.11b+1.dfsg/load_eqn.c:480:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(UserDrawWinColor)==0)
data/xppaut-6.11b+1.dfsg/load_eqn.c:737:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n=strlen(name);
data/xppaut-6.11b+1.dfsg/load_eqn.c:740:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n=strlen(does);
data/xppaut-6.11b+1.dfsg/load_eqn.c:781:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(name)>0&&strlen(value)>0)
data/xppaut-6.11b+1.dfsg/load_eqn.c:781:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(name)>0&&strlen(value)>0)
data/xppaut-6.11b+1.dfsg/load_eqn.c:823:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(s1),i;
data/xppaut-6.11b+1.dfsg/load_eqn.c:824:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(s2)<n)return(0);
data/xppaut-6.11b+1.dfsg/load_eqn.c:846:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(name)>0&&strlen(value)>0)
data/xppaut-6.11b+1.dfsg/load_eqn.c:846:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(name)>0&&strlen(value)>0)
data/xppaut-6.11b+1.dfsg/load_eqn.c:938:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name)==5)
data/xppaut-6.11b+1.dfsg/load_eqn.c:946:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (strlen(name)==7)
data/xppaut-6.11b+1.dfsg/load_eqn.c:971:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(name)>0&&strlen(value)>0)
data/xppaut-6.11b+1.dfsg/load_eqn.c:971:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(name)>0&&strlen(value)>0)
data/xppaut-6.11b+1.dfsg/load_eqn.c:997:4: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l=strlen(bob);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1006:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(name,bob,k);
data/xppaut-6.11b+1.dfsg/load_eqn.c:1040:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(s1);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:515:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n=strlen(name);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:518:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n=strlen(does);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:554:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(name)>0&&strlen(value)>0)
data/xppaut-6.11b+1.dfsg/load_eqnold.c:554:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(name)>0&&strlen(value)>0)
data/xppaut-6.11b+1.dfsg/load_eqnold.c:595:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(s1),i;
data/xppaut-6.11b+1.dfsg/load_eqnold.c:596:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(s2)<n)return(0);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:614:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(name)>0&&strlen(value)>0)
data/xppaut-6.11b+1.dfsg/load_eqnold.c:614:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(name)>0&&strlen(value)>0)
data/xppaut-6.11b+1.dfsg/load_eqnold.c:637:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(name)>0&&strlen(value)>0)
data/xppaut-6.11b+1.dfsg/load_eqnold.c:637:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(name)>0&&strlen(value)>0)
data/xppaut-6.11b+1.dfsg/load_eqnold.c:659:4: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l=strlen(bob);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:668:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(name,bob,k);
data/xppaut-6.11b+1.dfsg/load_eqnold.c:696:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(s1);
data/xppaut-6.11b+1.dfsg/lread.c:53:9: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if((ch=getc(cf))!=EOF) return(ch);
data/xppaut-6.11b+1.dfsg/lunch-new.c:140:23: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if(POIVAR==0)strcpy(bob,"T");
data/xppaut-6.11b+1.dfsg/lunch-new.c:385:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(i=6;i<strlen(fn);i++){
data/xppaut-6.11b+1.dfsg/lunch-new.c:433:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(i=0;i<strlen(fn);i++){
data/xppaut-6.11b+1.dfsg/lunch-new.c:686:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
while(i<strlen(s)){
data/xppaut-6.11b+1.dfsg/lunch.c:106:23: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if(POIVAR==0)strcpy(bob,"T");
data/xppaut-6.11b+1.dfsg/lunch.c:394:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
while(i<strlen(s)){
data/xppaut-6.11b+1.dfsg/main.c:399:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(this_file)<60)
data/xppaut-6.11b+1.dfsg/main.c:623:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(UserBlack) != 0)
data/xppaut-6.11b+1.dfsg/main.c:634:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(UserWhite) != 0)
data/xppaut-6.11b+1.dfsg/main.c:668:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(UserMainWinColor) != 0)
data/xppaut-6.11b+1.dfsg/main.c:685:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(UserDrawWinColor) != 0)
data/xppaut-6.11b+1.dfsg/main.c:734:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
DCURXb = XTextWidth(big_font,teststr,strlen(teststr))/(strlen(teststr)-2);
data/xppaut-6.11b+1.dfsg/main.c:734:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
DCURXb = XTextWidth(big_font,teststr,strlen(teststr))/(strlen(teststr)-2);
data/xppaut-6.11b+1.dfsg/main.c:743:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
DCURXs = XTextWidth (small_font,teststr,strlen(teststr))/(strlen(teststr)-2);
data/xppaut-6.11b+1.dfsg/main.c:743:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
DCURXs = XTextWidth (small_font,teststr,strlen(teststr))/(strlen(teststr)-2);
data/xppaut-6.11b+1.dfsg/main.c:755:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(UserBGBitmap) != 0) /*User supplied */
data/xppaut-6.11b+1.dfsg/mainold.c:177:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(this_file)<60)
data/xppaut-6.11b+1.dfsg/mainold.c:340:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(UserBlack) != 0)
data/xppaut-6.11b+1.dfsg/mainold.c:351:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(UserWhite) != 0)
data/xppaut-6.11b+1.dfsg/mainold.c:384:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(UserMainWinColor) != 0)
data/xppaut-6.11b+1.dfsg/mainold.c:401:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(UserDrawWinColor) != 0)
data/xppaut-6.11b+1.dfsg/mainold.c:448:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
DCURXb = XTextWidth(big_font,teststr,strlen(teststr))/(strlen(teststr)-2);
data/xppaut-6.11b+1.dfsg/mainold.c:448:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
DCURXb = XTextWidth(big_font,teststr,strlen(teststr))/(strlen(teststr)-2);
data/xppaut-6.11b+1.dfsg/mainold.c:457:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
DCURXs = XTextWidth (small_font,teststr,strlen(teststr))/(strlen(teststr)-2);
data/xppaut-6.11b+1.dfsg/mainold.c:457:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
DCURXs = XTextWidth (small_font,teststr,strlen(teststr))/(strlen(teststr)-2);
data/xppaut-6.11b+1.dfsg/mainold.c:469:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(UserBGBitmap) != 0) /*User supplied */
data/xppaut-6.11b+1.dfsg/many_pops.c:223:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len=strlen(string);
data/xppaut-6.11b+1.dfsg/many_pops.c:1067:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
graph[i].gr_info,strlen(graph[i].gr_info));
data/xppaut-6.11b+1.dfsg/many_pops.c:1072:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
graph[i].gr_info,strlen(graph[i].gr_info));
data/xppaut-6.11b+1.dfsg/many_pops.c:1304:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,MyGraph->w_info,gc,5,CURY_OFF,buf,strlen(buf));
data/xppaut-6.11b+1.dfsg/many_pops.c:1308:66: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,MyGraph->w_info,small_gc,0,CURY_OFFs,buf,strlen(buf));
data/xppaut-6.11b+1.dfsg/markov.c:132:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ll=strlen(markov[i].name);
data/xppaut-6.11b+1.dfsg/markov.c:187:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ll=strlen(markov[i].name);
data/xppaut-6.11b+1.dfsg/markov.c:293:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
markov[index].trans[l0]=(char *)malloc(sizeof(char)*(strlen(expr)+1));
data/xppaut-6.11b+1.dfsg/menu.c:150:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,win,gc,DCURX/2+5,CURY_OFF,z[0],strlen(z[0]));
data/xppaut-6.11b+1.dfsg/menu.c:160:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,win,gc,5,CURY_OFF,z[i+1],strlen(z[i+1]));
data/xppaut-6.11b+1.dfsg/menudrive.c:85:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((ed == NULL) || (strlen(ed)==0))
data/xppaut-6.11b+1.dfsg/menudrive.c:162:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int wid=strlen(m)*DCURX+20;
data/xppaut-6.11b+1.dfsg/my_ps.c:368:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=strlen(str);
data/xppaut-6.11b+1.dfsg/my_ps.c:388:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(tmp)>0){
data/xppaut-6.11b+1.dfsg/my_ps.c:435:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(tmp)>0)
data/xppaut-6.11b+1.dfsg/nullcline.c:175:3: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
sprintf(ncrange.rv," ");
data/xppaut-6.11b+1.dfsg/numerics.c:401:1: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
sprintf(my_pmap.section," ");
data/xppaut-6.11b+1.dfsg/open.c:90:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
b->ufnm=(char *) malloc((unsigned int)(strlen(buf)+1));
data/xppaut-6.11b+1.dfsg/open.c:129:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
a.ofnmlen=strlen(nbuf);
data/xppaut-6.11b+1.dfsg/parser2.c:529:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(string);
data/xppaut-6.11b+1.dfsg/parser2.c:535:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(my_symb[NSYM].name,string,len);
data/xppaut-6.11b+1.dfsg/parser2.c:586:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(string);
data/xppaut-6.11b+1.dfsg/parser2.c:588:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(my_symb[NSYM].name,string,len);
data/xppaut-6.11b+1.dfsg/parser2.c:599:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(i=0;i<strlen(expr);i++)
data/xppaut-6.11b+1.dfsg/parser2.c:601:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(in==0||in==(strlen(expr)-1)){
data/xppaut-6.11b+1.dfsg/parser2.c:607:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
kernel[NKernel].expr=(char *)malloc(strlen(expr)+2-in);
data/xppaut-6.11b+1.dfsg/parser2.c:611:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(i=in+1;i<strlen(expr);i++)kernel[NKernel].expr[i-in-1]=expr[i];
data/xppaut-6.11b+1.dfsg/parser2.c:612:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
kernel[NKernel].expr[strlen(expr)-in-1]=0;
data/xppaut-6.11b+1.dfsg/parser2.c:617:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
kernel[NKernel].expr=(char *)malloc(strlen(expr)+2);
data/xppaut-6.11b+1.dfsg/parser2.c:644:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(string);
data/xppaut-6.11b+1.dfsg/parser2.c:646:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(my_symb[NSYM].name,string,len);
data/xppaut-6.11b+1.dfsg/parser2.c:728:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len=strlen(name);
data/xppaut-6.11b+1.dfsg/parser2.c:733:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(my_symb[NSYM].name,string,len);
data/xppaut-6.11b+1.dfsg/parser2.c:749:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len=strlen(name);
data/xppaut-6.11b+1.dfsg/parser2.c:754:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(my_symb[NSYM].name,string,len);
data/xppaut-6.11b+1.dfsg/parser2.c:793:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len=strlen(name);
data/xppaut-6.11b+1.dfsg/parser2.c:797:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(my_symb[NSYM].name,string,len);
data/xppaut-6.11b+1.dfsg/parser2.c:845:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
my_symb[FIRST_ARG+i].len=strlen(args[i]);
data/xppaut-6.11b+1.dfsg/parser2.c:865:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len=strlen(name);
data/xppaut-6.11b+1.dfsg/parser2.c:875:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(my_symb[NSYM].name,string,len);
data/xppaut-6.11b+1.dfsg/parser2.c:926:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l=strlen(ufun_def[index]);
data/xppaut-6.11b+1.dfsg/parser2.c:947:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len=strlen(junk);
data/xppaut-6.11b+1.dfsg/parser2.c:970:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(my_symb[NSYM].name,string,len);
data/xppaut-6.11b+1.dfsg/parser2.c:989:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l=strlen(ufun_def[NFUN]);
data/xppaut-6.11b+1.dfsg/parser2.c:1110:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(junk);
data/xppaut-6.11b+1.dfsg/parserslow2.c:371:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(string);
data/xppaut-6.11b+1.dfsg/parserslow2.c:377:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(my_symb[NSYM].name,string,len);
data/xppaut-6.11b+1.dfsg/parserslow2.c:446:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(string);
data/xppaut-6.11b+1.dfsg/parserslow2.c:448:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(my_symb[NSYM].name,string,len);
data/xppaut-6.11b+1.dfsg/parserslow2.c:459:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(i=0;i<strlen(expr);i++)
data/xppaut-6.11b+1.dfsg/parserslow2.c:461:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(in==0||in==(strlen(expr)-1)){
data/xppaut-6.11b+1.dfsg/parserslow2.c:467:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
kernel[NKernel].expr=(char *)malloc(strlen(expr)+2-in);
data/xppaut-6.11b+1.dfsg/parserslow2.c:471:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(i=in+1;i<strlen(expr);i++)kernel[NKernel].expr[i-in-1]=expr[i];
data/xppaut-6.11b+1.dfsg/parserslow2.c:472:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
kernel[NKernel].expr[strlen(expr)-in-1]=0;
data/xppaut-6.11b+1.dfsg/parserslow2.c:477:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
kernel[NKernel].expr=(char *)malloc(strlen(expr)+2);
data/xppaut-6.11b+1.dfsg/parserslow2.c:503:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(string);
data/xppaut-6.11b+1.dfsg/parserslow2.c:505:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(my_symb[NSYM].name,string,len);
data/xppaut-6.11b+1.dfsg/parserslow2.c:551:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len=strlen(name);
data/xppaut-6.11b+1.dfsg/parserslow2.c:556:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(my_symb[NSYM].name,string,len);
data/xppaut-6.11b+1.dfsg/parserslow2.c:572:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len=strlen(name);
data/xppaut-6.11b+1.dfsg/parserslow2.c:577:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(my_symb[NSYM].name,string,len);
data/xppaut-6.11b+1.dfsg/parserslow2.c:617:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len=strlen(name);
data/xppaut-6.11b+1.dfsg/parserslow2.c:621:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(my_symb[NSYM].name,string,len);
data/xppaut-6.11b+1.dfsg/parserslow2.c:668:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
my_symb[FIRST_ARG+i].len=strlen(args[i]);
data/xppaut-6.11b+1.dfsg/parserslow2.c:680:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len=strlen(name);
data/xppaut-6.11b+1.dfsg/parserslow2.c:690:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(my_symb[NSYM].name,string,len);
data/xppaut-6.11b+1.dfsg/parserslow2.c:743:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l=strlen(ufun_def[index]);
data/xppaut-6.11b+1.dfsg/parserslow2.c:764:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len=strlen(junk);
data/xppaut-6.11b+1.dfsg/parserslow2.c:787:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(my_symb[NSYM].name,string,len);
data/xppaut-6.11b+1.dfsg/parserslow2.c:798:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l=strlen(ufun_def[NFUN]);
data/xppaut-6.11b+1.dfsg/parserslow2.c:923:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(junk);
data/xppaut-6.11b+1.dfsg/pop_list.c:35:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(scrbox_list[0].list[0],"T");
data/xppaut-6.11b+1.dfsg/pop_list.c:123:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(slen<strlen(list[i]))slen=strlen(list[i]);
data/xppaut-6.11b+1.dfsg/pop_list.c:123:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(slen<strlen(list[i]))slen=strlen(list[i]);
data/xppaut-6.11b+1.dfsg/pop_list.c:163:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sb.list[i+i0],strlen(sb.list[i+i0]));
data/xppaut-6.11b+1.dfsg/pop_list.c:265:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pos=strlen(sb.value[0]);
data/xppaut-6.11b+1.dfsg/pop_list.c:266:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
colm=(pos+strlen(sb.name[0]))*DCURX;
data/xppaut-6.11b+1.dfsg/pop_list.c:311:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l=strlen(name);
data/xppaut-6.11b+1.dfsg/pop_list.c:312:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int m=strlen(value);
data/xppaut-6.11b+1.dfsg/pop_list.c:336:3: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(sb->value[inew]),0);
data/xppaut-6.11b+1.dfsg/pop_list.c:339:3: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(sb->value[i]),0);
data/xppaut-6.11b+1.dfsg/pop_list.c:350:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*pos=strlen(sb->value[inew]);
data/xppaut-6.11b+1.dfsg/pop_list.c:351:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*col=(*pos+strlen(sb->name[inew]))*DCURX;
data/xppaut-6.11b+1.dfsg/pop_list.c:838:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l1=strlen(message);
data/xppaut-6.11b+1.dfsg/pop_list.c:839:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l2=strlen(button);
data/xppaut-6.11b+1.dfsg/pop_list.c:908:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int wid=strlen(message)*DCURX;
data/xppaut-6.11b+1.dfsg/pop_list.c:937:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l1=strlen(choice1)*DCURX;
data/xppaut-6.11b+1.dfsg/pop_list.c:938:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l2=strlen(choice2)*DCURX;
data/xppaut-6.11b+1.dfsg/pop_list.c:939:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int lm=strlen(string)*DCURX;
data/xppaut-6.11b+1.dfsg/pop_list.c:1086:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hints[i],strlen(hints[i]));
data/xppaut-6.11b+1.dfsg/read_dir.c:238:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l=strlen(dp->d_name);
data/xppaut-6.11b+1.dfsg/read_dir.c:244:4: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l=strlen(dp->d_name);
data/xppaut-6.11b+1.dfsg/read_dir.c:333:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(pathname, "/");
data/xppaut-6.11b+1.dfsg/rsfe.c:44:13: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while((ch=getc(cf))!='\n' && ch!=EOF);
data/xppaut-6.11b+1.dfsg/rsfe.c:51:7: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ch = getc(cf);
data/xppaut-6.11b+1.dfsg/run_auto.c:90:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
o_1.ofnmlen = strlen(fort8);
data/xppaut-6.11b+1.dfsg/run_auto.c:101:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
o_1.ofnmlen = strlen(fort9);
data/xppaut-6.11b+1.dfsg/run_auto.c:113:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
o_1.ofnmlen = strlen(fort3);
data/xppaut-6.11b+1.dfsg/run_auto.c:125:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
o_1.ofnmlen = strlen(fort7);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:234:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r->formula=(char *)malloc(strlen(f)+1);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:244:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r->f=(char *)malloc(strlen(f)+1);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:246:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r->tc=(char *)malloc(strlen(tc)+1);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:248:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r->v=(char *)malloc(strlen(v)+1);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:271:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(name)>0){
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:272:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
par[Npar].name=(char *)malloc(strlen(name)+1);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:276:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(id)>0){
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:277:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
par[Npar].id=(char *)malloc(strlen(id)+1);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:310:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
x->ev=(char *)malloc(strlen(ev)+1);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:323:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
x->a[j]=(char *)malloc(strlen(big)+1);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:353:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
f->name=(char *)malloc(strlen(name));
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:362:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
f->arg[0]=(char *)malloc(strlen(sa)+1);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:367:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
f->arg[j]=(char *)malloc(strlen(sa)+1);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:376:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
f->formula=(char *)malloc(strlen(formula)+1);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:456:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r->re[j]=(char *)malloc(strlen(name)+1);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:465:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r->pr[j]=(char *)malloc(strlen(name)+1);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:548:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(name)>0){
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:549:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
x->name=(char *)malloc(strlen(name)+1);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:556:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(id)>0){
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:557:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
x->id=(char *)malloc(strlen(id)+1);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:563:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(tc)>0){
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:564:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
x->tc=(char *)malloc(strlen(tc)+1);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:901:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(i=0;i<strlen(s);i++)
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:955:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(s)>9){
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:956:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long_names[lnum].src=(char *)malloc(strlen(s)+1);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:958:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(x,s,4);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:970:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int i=0,j=0,k,nf=strlen(sfnd),nr=strlen(srep);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:970:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int i=0,j=0,k,nf=strlen(sfnd),nr=strlen(srep);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:971:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int m=strlen(sold);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1002:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n1=strlen(s1),n2=strlen(s2);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1002:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n1=strlen(s1),n2=strlen(s2);
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1038:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(sy1->src)>strlen(sy2->src))return -1;
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1038:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(sy1->src)>strlen(sy2->src))return -1;
data/xppaut-6.11b+1.dfsg/sbml2xpp.c:1153:7: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
sprintf(tmp,"0");
data/xppaut-6.11b+1.dfsg/simplenet.c:1082:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int i=0,n=strlen(s);
data/xppaut-6.11b+1.dfsg/simplenet.c:1143:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int i,n=strlen(s),ir=-1,j=0;
data/xppaut-6.11b+1.dfsg/tabular.c:177:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(name)==0)return;
data/xppaut-6.11b+1.dfsg/torus.c:90:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display,torbox.w[i],small_gc,0,CURY_OFFs,strng,strlen(strng));
data/xppaut-6.11b+1.dfsg/txtread.c:32:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define xds(a) { XDrawString(display,w,small_gc,5,CURY_OFFs,a,strlen(a));\
data/xppaut-6.11b+1.dfsg/txtread.c:261:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
save_eqn[j],strlen(save_eqn[j]));
data/xppaut-6.11b+1.dfsg/txtread.c:268:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
comments[j].text,strlen(comments[j].text));
data/xppaut-6.11b+1.dfsg/userbut.c:62:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
userbut[i].bname,strlen(userbut[i].bname));
data/xppaut-6.11b+1.dfsg/userbut.c:78:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int i=0,j=0,f=0,n=strlen(s);
data/xppaut-6.11b+1.dfsg/userbut.c:125:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(s)==0)return;
data/xppaut-6.11b+1.dfsg/userbut.c:127:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(bname)==0||strlen(sc)==0)return;
data/xppaut-6.11b+1.dfsg/userbut.c:127:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(bname)==0||strlen(sc)==0)return;
data/xppaut-6.11b+1.dfsg/userbut.c:157:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l=DCURXs*(strlen(userbut[i].bname)+2);
data/xppaut-6.11b+1.dfsg/wref.c:76:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
delta = w - strlen(buf) - signspace;
data/xppaut-6.11b+1.dfsg/wref.c:205:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(b) + d1;
data/xppaut-6.11b+1.dfsg/wsne.c:49:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (recpos+strlen(s) >= LINE-2) {
ANALYSIS SUMMARY:
Hits = 2804
Lines analyzed = 128063 in approximately 3.21 seconds (39872 lines/second)
Physical Source Lines of Code (SLOC) = 91730
Hits@level = [0] 521 [1] 556 [2] 1419 [3] 23 [4] 806 [5] 0
Hits@level+ = [0+] 3325 [1+] 2804 [2+] 2248 [3+] 829 [4+] 806 [5+] 0
Hits/KSLOC@level+ = [0+] 36.2477 [1+] 30.568 [2+] 24.5067 [3+] 9.03739 [4+] 8.78666 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.