Bugzilla – Attachment 57856 Details for
Bug 132707
VUL-0: AUDIT-0: CASA
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
IDP Log In
|
Forgot Password
flawfinder_output.txt
flawfinder_output.txt (text/plain), 2.57 KB, created by
Marcus Meissner
on 2005-11-21 10:41:05 UTC
(
hide
)
Description:
flawfinder_output.txt
Filename:
MIME Type:
Creator:
Marcus Meissner
Created:
2005-11-21 10:41:05 UTC
Size:
2.57 KB
patch
obsolete
>Flawfinder version 1.26, (C) 2001-2004 David A. Wheeler. >Number of dangerous functions in C/C++ ruleset: 158 >Examining c_micasadk/sscs_ndk.c >Examining c_micasadk/sscs_win_calls.c >Warning: skipping non-regular file --context >Warning: skipping non-regular file -m >Warning: skipping non-regular file 5 >c_micasadk/sscs_ndk.c:187: [2] (buffer) memcpy: > Does not check for buffer overflows when copying to destination. Make > sure destination can always hold the source data. >c_micasadk/sscs_ndk.c:384: [2] (buffer) memcpy: > Does not check for buffer overflows when copying to destination. Make > sure destination can always hold the source data. >c_micasadk/sscs_ndk.c:419: [2] (buffer) memcpy: > Does not check for buffer overflows when copying to destination. Make > sure destination can always hold the source data. >c_micasadk/sscs_ndk.c:427: [2] (buffer) memcpy: > Does not check for buffer overflows when copying to destination. Make > sure destination can always hold the source data. >c_micasadk/sscs_ndk.c:1004: [2] (buffer) memcpy: > Does not check for buffer overflows when copying to destination. Make > sure destination can always hold the source data. >c_micasadk/sscs_ndk.c:1170: [2] (buffer) memcpy: > Does not check for buffer overflows when copying to destination. Make > sure destination can always hold the source data. >c_micasadk/sscs_ndk.c:1316: [2] (buffer) memcpy: > Does not check for buffer overflows when copying to destination. Make > sure destination can always hold the source data. >c_micasadk/sscs_ndk.c:1500: [2] (buffer) memcpy: > Does not check for buffer overflows when copying to destination. Make > sure destination can always hold the source data. >c_micasadk/sscs_ndk.c:2091: [2] (buffer) memcpy: > Does not check for buffer overflows when copying to destination. Make > sure destination can always hold the source data. >c_micasadk/sscs_ndk.c:2661: [1] (buffer) strlen: > Does not handle strings that are not \0-terminated (it could cause a > crash if unprotected). >c_micasadk/sscs_ndk.c:2673: [1] (buffer) strlen: > Does not handle strings that are not \0-terminated (it could cause a > crash if unprotected). > >Hits = 11 >Lines analyzed = 3409 in 0.81 seconds (10873 lines/second) >Physical Source Lines of Code (SLOC) = 2298 >Hits@level = [0] 0 [1] 2 [2] 9 [3] 0 [4] 0 [5] 0 >Hits@level+ = [0+] 11 [1+] 11 [2+] 9 [3+] 0 [4+] 0 [5+] 0 >Hits/KSLOC@level+ = [0+] 4.78677 [1+] 4.78677 [2+] 3.91645 [3+] 0 [4+] 0 [5+] 0 >Minimum risk level = 1 >Not every hit is necessarily a security vulnerability. >There may be other security vulnerabilities; review your code!
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=57856">View the attachment on a separate page</a>.</b>
Actions:
View
Attachments on
bug 132707
:
57770
|
57771
|
57772
|
57773
|
57854
|
57855
| 57856 |
69131
|
71550