COMMAND : rats -w 3 Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000019 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:50: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:258: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:271: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:97: Low: fgets /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:291: Low: fgets /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:319: Low: fgets Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:153: Low: strlen /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:166: Low: strlen /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:174: Low: strlen /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:182: Low: strlen /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:192: Low: strlen /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:202: Low: strlen /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:212: Low: strlen /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:231: Low: strlen /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:322: Low: strlen /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:328: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:329: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:264: Low: fopen /tmp/bogosec.temp_target.yf912R/src/examples/example-c.c:273: Low: fopen A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 344 Total time 0.000426 seconds 807511 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/examples/list-dicts.c Total lines analyzed: 45 Total time 0.000120 seconds 375000 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/phonet.cpp /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/phonet.cpp:460: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/phonet.cpp:203: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/phonet.cpp:460: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/phonet.cpp:92: Low: open A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 473 Total time 0.002831 seconds 167078 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/affix.cpp /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/affix.cpp:67: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/affix.cpp:78: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/affix.cpp:1083: High: strcpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/affix.cpp:1238: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/affix.cpp:388: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/affix.cpp:662: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/affix.cpp:1052: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/affix.cpp:1053: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/affix.cpp:1199: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/affix.cpp:1200: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/affix.cpp:282: Low: open A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 1440 Total time 0.001374 seconds 1048034 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/typo_editdist.cpp /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/typo_editdist.cpp:91: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/typo_editdist.cpp:109: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/typo_editdist.cpp:132: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/typo_editdist.cpp:102: Low: open A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 197 Total time 0.000322 seconds 611801 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/phonetic.cpp /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/phonetic.cpp:16: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/phonetic.cpp:17: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/phonetic.cpp:22: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/phonetic.cpp:23: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. Total lines analyzed: 209 Total time 0.000259 seconds 806949 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/speller_impl.cpp Total lines analyzed: 735 Total time 0.000813 seconds 904059 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/leditdist.cpp Total lines analyzed: 309 Total time 0.000296 seconds 1043918 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/primes.cpp Total lines analyzed: 52 Total time 0.000120 seconds 433333 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/editdist.cpp Total lines analyzed: 57 Total time 0.000135 seconds 422222 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/data.cpp /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/data.cpp:390: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/data.cpp:391: Medium: read Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/data.cpp:36: Low: stat A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. No matching uses were detected. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/data.cpp:291: Low: remove A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/data.cpp:364: Low: open A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 463 Total time 0.000507 seconds 913214 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/suggest.cpp /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/suggest.cpp:391: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/suggest.cpp:392: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/suggest.cpp:394: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/suggest.cpp:569: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/suggest.cpp:599: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/suggest.cpp:647: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/suggest.cpp:536: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/suggest.cpp:736: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/suggest.cpp:857: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/suggest.cpp:874: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/suggest.cpp:875: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/suggest.cpp:933: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/suggest.cpp:955: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/suggest.cpp:1042: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/suggest.cpp:1119: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/suggest.cpp:1323: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. Total lines analyzed: 1431 Total time 0.001539 seconds 929824 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/writable.cpp /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/writable.cpp:462: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/writable.cpp:468: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/writable.cpp:739: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/writable.cpp:754: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/writable.cpp:760: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. Total lines analyzed: 885 Total time 0.000920 seconds 961956 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/multi_ws.cpp /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/multi_ws.cpp:38: Low: open A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 89 Total time 0.000157 seconds 566879 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/language.cpp /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/language.cpp:31: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/language.cpp:476: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/language.cpp:545: High: printf /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/language.cpp:674: High: printf /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/language.cpp:736: High: printf Check to be sure that the non-constant format string passed as argument 1 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/language.cpp:480: Low: snprintf Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/language.cpp:622: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/language.cpp:727: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/language.cpp:127: Low: open /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/language.cpp:292: Low: open /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/language.cpp:609: Low: open A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 743 Total time 0.015973 seconds 46515 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:186: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:309: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:311: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:708: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:790: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:349: Medium: read /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:367: Medium: read /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:370: Medium: read /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:382: Medium: read /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:388: Medium: read /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:409: Medium: read Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:164: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:795: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:796: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:797: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:868: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:882: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:901: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:949: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:951: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:952: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:907: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:913: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:920: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:954: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:1051: Low: strncpy /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:1057: Low: strncpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. Also, consider using strlcpy() instead, if it is avaialable to you. /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:345: Low: open /tmp/bogosec.temp_target.yf912R/src/modules/speller/default/readonly_ws.cpp:1140: Low: open A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 1194 Total time 0.001172 seconds 1018771 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/tokenizer/basic.cpp Total lines analyzed: 81 Total time 0.000130 seconds 623076 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:319: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:392: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:678: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:703: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:718: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:726: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:739: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:317: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:360: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:372: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:418: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:459: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:508: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:612: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:711: Low: strlen /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:717: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:320: Low: strncpy /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:393: Low: strncpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. Also, consider using strlcpy() instead, if it is avaialable to you. /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:51: Low: remove /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:270: Low: remove /tmp/bogosec.temp_target.yf912R/src/modules/filter/tex.cpp:274: Low: remove A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 768 Total time 0.000690 seconds 1113043 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/filter/nroff.cpp /tmp/bogosec.temp_target.yf912R/src/modules/filter/nroff.cpp:55: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/modules/filter/nroff.cpp:62: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. Total lines analyzed: 313 Total time 0.000257 seconds 1217898 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/filter/email.cpp /tmp/bogosec.temp_target.yf912R/src/modules/filter/email.cpp:42: Low: remove A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 116 Total time 0.000173 seconds 670520 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/filter/sgml.cpp /tmp/bogosec.temp_target.yf912R/src/modules/filter/sgml.cpp:53: Low: remove /tmp/bogosec.temp_target.yf912R/src/modules/filter/sgml.cpp:56: Low: remove A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 605 Total time 0.000521 seconds 1161228 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/filter/url.cpp Total lines analyzed: 67 Total time 0.000129 seconds 519379 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/filter/texinfo.cpp Total lines analyzed: 232 Total time 0.000251 seconds 924302 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/modules/filter/context.cpp /tmp/bogosec.temp_target.yf912R/src/modules/filter/context.cpp:92: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. Total lines analyzed: 268 Total time 0.000339 seconds 790560 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:68: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:361: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:447: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:493: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:615: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:698: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:742: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:166: High: strcpy /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:457: High: strcpy /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:505: High: strcpy /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:716: High: strcpy /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:720: High: strcpy /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:758: High: strcpy /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:765: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:132: Low: strlen /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:159: Low: strlen /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:170: Low: strlen /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:302: Low: strlen /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:311: Low: strlen /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:367: Low: strlen /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:552: Low: strlen /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:676: Low: strlen /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:802: Low: strlen /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:829: Low: strlen /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:856: Low: strlen /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:866: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:254: Low: fgets /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:287: Low: fgets /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:618: Low: fgets /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:637: Low: fgets Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:680: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:837: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:842: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:858: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:95: Low: fopen /tmp/bogosec.temp_target.yf912R/src/myspell/munch.c:115: Low: fopen A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 871 Total time 0.000892 seconds 976457 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000019 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000035 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000019 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:97: High: printf /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:103: High: printf /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:395: High: printf /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:710: High: printf /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:929: High: printf /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2847: High: printf /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2909: High: printf Check to be sure that the non-constant format string passed as argument 1 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:949: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2327: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2389: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2372: High: strcpy /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2376: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:753: Medium: getchar Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:1907: Medium: realloc Don't use on memory intended to be secure, because the old structure will not be zeroed out. /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:621: Low: strlen /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:862: Low: strlen /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:1734: Low: strlen /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:1823: Low: strlen /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:1939: Low: strlen /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2250: Low: strlen /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2251: Low: strlen /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2255: Low: strlen /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2256: Low: strlen /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2300: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2443: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2444: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2453: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2454: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2480: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2481: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2695: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:794: Low: remove A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:983: Low: fopen /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:997: Low: fopen A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:993: Low: open A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2086: Low: link /tmp/bogosec.temp_target.yf912R/src/prog/aspell.cpp:2346: Low: link A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 2942 Total time 0.002782 seconds 1057512 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/prog/checker_string.cpp /tmp/bogosec.temp_target.yf912R/src/prog/checker_string.cpp:22: Medium: getc Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. Total lines analyzed: 164 Total time 0.000274 seconds 598540 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/prog/prezip.c /tmp/bogosec.temp_target.yf912R/src/prog/prezip.c:101: Medium: getc /tmp/bogosec.temp_target.yf912R/src/prog/prezip.c:160: Medium: getc /tmp/bogosec.temp_target.yf912R/src/prog/prezip.c:168: Medium: getc /tmp/bogosec.temp_target.yf912R/src/prog/prezip.c:173: Medium: getc /tmp/bogosec.temp_target.yf912R/src/prog/prezip.c:176: Medium: getc /tmp/bogosec.temp_target.yf912R/src/prog/prezip.c:208: Medium: getc /tmp/bogosec.temp_target.yf912R/src/prog/prezip.c:212: Medium: getc Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. Total lines analyzed: 261 Total time 0.000261 seconds 999999 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/prog/compress.c /tmp/bogosec.temp_target.yf912R/src/prog/compress.c:74: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/prog/compress.c:75: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/prog/compress.c:108: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/prog/compress.c:53: Medium: getc /tmp/bogosec.temp_target.yf912R/src/prog/compress.c:57: Medium: getc /tmp/bogosec.temp_target.yf912R/src/prog/compress.c:115: Medium: getc /tmp/bogosec.temp_target.yf912R/src/prog/compress.c:119: Medium: getc /tmp/bogosec.temp_target.yf912R/src/prog/compress.c:122: Medium: getc Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. Total lines analyzed: 148 Total time 0.000188 seconds 787234 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/prog/check_funs.cpp /tmp/bogosec.temp_target.yf912R/src/prog/check_funs.cpp:140: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/prog/check_funs.cpp:177: Medium: signal /tmp/bogosec.temp_target.yf912R/src/prog/check_funs.cpp:178: Medium: signal /tmp/bogosec.temp_target.yf912R/src/prog/check_funs.cpp:194: Medium: signal /tmp/bogosec.temp_target.yf912R/src/prog/check_funs.cpp:203: Medium: signal /tmp/bogosec.temp_target.yf912R/src/prog/check_funs.cpp:275: Medium: signal /tmp/bogosec.temp_target.yf912R/src/prog/check_funs.cpp:276: Medium: signal /tmp/bogosec.temp_target.yf912R/src/prog/check_funs.cpp:277: Medium: signal When setting signal handlers, do not use the same function to handle multiple signals. There exists the possibility a race condition will result if 2 or more different signals are sent to the process at nearly the same time. Also, when writing signal handlers, it is best to do as little as possible in them. The best strategy is to use the signal handler to set a flag, that another part of the program tests and performs the appropriate action(s) when it is set. See also: http://razor.bindview.com/publish/papers/signals.txt /tmp/bogosec.temp_target.yf912R/src/prog/check_funs.cpp:420: Medium: getchar /tmp/bogosec.temp_target.yf912R/src/prog/check_funs.cpp:465: Medium: getchar /tmp/bogosec.temp_target.yf912R/src/prog/check_funs.cpp:467: Medium: getchar Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. /tmp/bogosec.temp_target.yf912R/src/prog/check_funs.cpp:457: Medium: read Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. Total lines analyzed: 892 Total time 0.000776 seconds 1149484 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib5/pspell-dummy.cpp Total lines analyzed: 1 Total time 0.000051 seconds 19607 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib5/aspell-dummy.cpp Total lines analyzed: 1 Total time 0.000041 seconds 24390 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/new_config.cpp Total lines analyzed: 25 Total time 0.000085 seconds 294117 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/string_list-c.cpp /tmp/bogosec.temp_target.yf912R/src/lib/string_list-c.cpp:45: Low: remove A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 77 Total time 0.000128 seconds 601562 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/word_list-c.cpp Total lines analyzed: 38 Total time 0.000092 seconds 413043 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/find_speller.cpp /tmp/bogosec.temp_target.yf912R/src/lib/find_speller.cpp:254: Low: strlen /tmp/bogosec.temp_target.yf912R/src/lib/find_speller.cpp:263: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. Total lines analyzed: 495 Total time 0.000546 seconds 906593 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/string_map-c.cpp /tmp/bogosec.temp_target.yf912R/src/lib/string_map-c.cpp:30: Low: remove A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 92 Total time 0.000141 seconds 652482 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/can_have_error-c.cpp Total lines analyzed: 41 Total time 0.000113 seconds 362831 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/error-c.cpp Total lines analyzed: 25 Total time 0.000084 seconds 297619 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/info-c.cpp Total lines analyzed: 113 Total time 0.000155 seconds 729032 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/new_fmode.cpp /tmp/bogosec.temp_target.yf912R/src/lib/new_fmode.cpp:393: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/lib/new_fmode.cpp:402: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/lib/new_fmode.cpp:673: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/lib/new_fmode.cpp:691: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/lib/new_fmode.cpp:726: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/lib/new_fmode.cpp:727: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.yf912R/src/lib/new_fmode.cpp:231: Low: fopen A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.yf912R/src/lib/new_fmode.cpp:584: Low: open A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 782 Total time 0.000842 seconds 928741 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/new_filter.cpp /tmp/bogosec.temp_target.yf912R/src/lib/new_filter.cpp:402: Medium: realloc Don't use on memory intended to be secure, because the old structure will not be zeroed out. /tmp/bogosec.temp_target.yf912R/src/lib/new_filter.cpp:300: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/lib/new_filter.cpp:302: Low: memcpy /tmp/bogosec.temp_target.yf912R/src/lib/new_filter.cpp:305: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.yf912R/src/lib/new_filter.cpp:394: Low: strlen /tmp/bogosec.temp_target.yf912R/src/lib/new_filter.cpp:499: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.yf912R/src/lib/new_filter.cpp:266: Low: open A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 541 Total time 0.000646 seconds 837461 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/config-c.cpp /tmp/bogosec.temp_target.yf912R/src/lib/config-c.cpp:125: Low: remove A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 173 Total time 0.000229 seconds 755458 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/filter-c.cpp Total lines analyzed: 47 Total time 0.000112 seconds 419642 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/string_pair_enumeration-c.cpp Total lines analyzed: 45 Total time 0.000109 seconds 412844 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/document_checker-c.cpp Total lines analyzed: 79 Total time 0.000136 seconds 580882 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/dummy.cpp Total lines analyzed: 2 Total time 0.000049 seconds 40816 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/new_checker.cpp Total lines analyzed: 27 Total time 0.000086 seconds 313953 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/string_enumeration-c.cpp Total lines analyzed: 53 Total time 0.000113 seconds 469026 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/speller-c.cpp Total lines analyzed: 174 Total time 0.000259 seconds 671814 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/lib/mutable_container-c.cpp /tmp/bogosec.temp_target.yf912R/src/lib/mutable_container-c.cpp:23: Low: remove A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 40 Total time 0.000104 seconds 384615 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/iostream.cpp Total lines analyzed: 14 Total time 0.000062 seconds 225806 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/string_list.cpp /tmp/bogosec.temp_target.yf912R/src/common/string_list.cpp:81: Low: remove A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 121 Total time 0.000166 seconds 728915 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/speller.cpp Total lines analyzed: 19 Total time 0.000081 seconds 234567 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/file_data_util.cpp Total lines analyzed: 76 Total time 0.000154 seconds 493506 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/errors.cpp Total lines analyzed: 701 Total time 0.000637 seconds 1100470 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/cache.cpp Total lines analyzed: 123 Total time 0.000168 seconds 732142 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/getdata.cpp Total lines analyzed: 194 Total time 0.000245 seconds 791836 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000016 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/tokenizer.cpp Total lines analyzed: 32 Total time 0.000090 seconds 355555 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/file_util.cpp /tmp/bogosec.temp_target.yf912R/src/common/file_util.cpp:215: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.yf912R/src/common/file_util.cpp:92: Low: open /tmp/bogosec.temp_target.yf912R/src/common/file_util.cpp:111: Low: open /tmp/bogosec.temp_target.yf912R/src/common/file_util.cpp:113: Low: open /tmp/bogosec.temp_target.yf912R/src/common/file_util.cpp:139: Low: open A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.yf912R/src/common/file_util.cpp:144: Low: remove /tmp/bogosec.temp_target.yf912R/src/common/file_util.cpp:153: Low: remove A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.yf912R/src/common/file_util.cpp:154: Low: rename A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.yf912R/src/common/file_util.cpp:231: Low: opendir A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 236 Total time 0.000267 seconds 883895 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/string.cpp /tmp/bogosec.temp_target.yf912R/src/common/string.cpp:40: High: vprintf Check to be sure that the non-constant format string passed as argument 1 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.yf912R/src/common/string.cpp:34: Medium: realloc Don't use on memory intended to be secure, because the old structure will not be zeroed out. /tmp/bogosec.temp_target.yf912R/src/common/string.cpp:75: Medium: read Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. Total lines analyzed: 87 Total time 0.000151 seconds 576158 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/objstack.cpp Total lines analyzed: 81 Total time 0.000123 seconds 658536 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/strtonum.cpp Total lines analyzed: 96 Total time 0.000149 seconds 644295 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/info.cpp /tmp/bogosec.temp_target.yf912R/src/common/info.cpp:67: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/common/info.cpp:175: Low: strlen /tmp/bogosec.temp_target.yf912R/src/common/info.cpp:188: Low: strlen /tmp/bogosec.temp_target.yf912R/src/common/info.cpp:348: Low: strlen /tmp/bogosec.temp_target.yf912R/src/common/info.cpp:503: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.yf912R/src/common/info.cpp:505: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.yf912R/src/common/info.cpp:181: Low: opendir /tmp/bogosec.temp_target.yf912R/src/common/info.cpp:342: Low: opendir A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.yf912R/src/common/info.cpp:199: Low: open /tmp/bogosec.temp_target.yf912R/src/common/info.cpp:476: Low: open A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 782 Total time 0.000761 seconds 1027595 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/gettext_init.cpp Total lines analyzed: 29 Total time 0.000076 seconds 381578 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/fstream.cpp /tmp/bogosec.temp_target.yf912R/src/common/fstream.cpp:59: Medium: getc /tmp/bogosec.temp_target.yf912R/src/common/fstream.cpp:68: Medium: getc /tmp/bogosec.temp_target.yf912R/src/common/fstream.cpp:83: Medium: getc /tmp/bogosec.temp_target.yf912R/src/common/fstream.cpp:87: Medium: getc Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. /tmp/bogosec.temp_target.yf912R/src/common/fstream.cpp:92: Medium: read Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. /tmp/bogosec.temp_target.yf912R/src/common/fstream.cpp:19: Low: open A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.yf912R/src/common/fstream.cpp:22: Low: fopen A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 150 Total time 0.000194 seconds 773195 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/error.cpp /tmp/bogosec.temp_target.yf912R/src/common/error.cpp:27: Low: strlen /tmp/bogosec.temp_target.yf912R/src/common/error.cpp:38: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.yf912R/src/common/error.cpp:40: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. Total lines analyzed: 53 Total time 0.000133 seconds 398496 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/config.cpp /tmp/bogosec.temp_target.yf912R/src/common/config.cpp:72: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/common/config.cpp:533: High: getenv /tmp/bogosec.temp_target.yf912R/src/common/config.cpp:534: High: getenv /tmp/bogosec.temp_target.yf912R/src/common/config.cpp:535: High: getenv /tmp/bogosec.temp_target.yf912R/src/common/config.cpp:652: High: getenv /tmp/bogosec.temp_target.yf912R/src/common/config.cpp:1282: High: getenv Environment variables are highly untrustable input. They may be of any length, and contain any data. Do not make any assumptions regarding content or length. If at all possible avoid using them, and if it is necessary, sanitize them and truncate them to a reasonable length. /tmp/bogosec.temp_target.yf912R/src/common/config.cpp:1187: High: printf Check to be sure that the non-constant format string passed as argument 1 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.yf912R/src/common/config.cpp:717: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.yf912R/src/common/config.cpp:719: Low: strlen /tmp/bogosec.temp_target.yf912R/src/common/config.cpp:1125: Low: strlen /tmp/bogosec.temp_target.yf912R/src/common/config.cpp:1206: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.yf912R/src/common/config.cpp:431: Low: remove /tmp/bogosec.temp_target.yf912R/src/common/config.cpp:803: Low: remove /tmp/bogosec.temp_target.yf912R/src/common/config.cpp:1152: Low: remove /tmp/bogosec.temp_target.yf912R/src/common/config.cpp:1162: Low: remove A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.yf912R/src/common/config.cpp:1255: Low: open A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 1524 Total time 0.010523 seconds 144825 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/string_map.cpp Total lines analyzed: 90 Total time 0.000155 seconds 580645 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/document_checker.cpp Total lines analyzed: 78 Total time 0.000130 seconds 600000 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/filter.cpp Total lines analyzed: 140 Total time 0.000184 seconds 760869 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/posib_err.cpp /tmp/bogosec.temp_target.yf912R/src/common/posib_err.cpp:69: Low: strncpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. Also, consider using strlcpy() instead, if it is avaialable to you. /tmp/bogosec.temp_target.yf912R/src/common/posib_err.cpp:84: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.yf912R/src/common/posib_err.cpp:88: Low: snprintf /tmp/bogosec.temp_target.yf912R/src/common/posib_err.cpp:90: Low: snprintf Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. Total lines analyzed: 129 Total time 0.000231 seconds 558441 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/itemize.cpp /tmp/bogosec.temp_target.yf912R/src/common/itemize.cpp:46: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/common/itemize.cpp:45: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.yf912R/src/common/itemize.cpp:48: Low: strncpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. Also, consider using strlcpy() instead, if it is avaialable to you. /tmp/bogosec.temp_target.yf912R/src/common/itemize.cpp:94: Low: remove A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 107 Total time 0.000168 seconds 636904 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/convert.cpp /tmp/bogosec.temp_target.yf912R/src/common/convert.cpp:302: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/common/convert.cpp:428: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/common/convert.cpp:551: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/common/convert.cpp:658: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/common/convert.cpp:704: High: fixed size local buffer /tmp/bogosec.temp_target.yf912R/src/common/convert.cpp:828: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.yf912R/src/common/convert.cpp:303: Low: snprintf /tmp/bogosec.temp_target.yf912R/src/common/convert.cpp:429: Low: snprintf /tmp/bogosec.temp_target.yf912R/src/common/convert.cpp:552: Low: snprintf /tmp/bogosec.temp_target.yf912R/src/common/convert.cpp:659: Low: snprintf /tmp/bogosec.temp_target.yf912R/src/common/convert.cpp:705: Low: snprintf /tmp/bogosec.temp_target.yf912R/src/common/convert.cpp:829: Low: snprintf Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.yf912R/src/common/convert.cpp:300: Low: open /tmp/bogosec.temp_target.yf912R/src/common/convert.cpp:426: Low: open A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 1096 Total time 0.001159 seconds 945642 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/common/can_have_error.cpp Total lines analyzed: 31 Total time 0.000077 seconds 402597 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.yf912R/src/misc/po-filter.c Total lines analyzed: 146 Total time 0.000151 seconds 966887 lines per second