COMMAND : rats -w 3 Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:158: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:164: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:281: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:377: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:421: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:422: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:423: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:462: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:481: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:513: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:541: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:626: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:712: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:786: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:840: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:841: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:842: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:982: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:983: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:984: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:985: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1117: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1118: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1119: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1120: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1121: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1331: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1455: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1456: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1497: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1502: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1525: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1526: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1572: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1577: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1600: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1605: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1632: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1696: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1697: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1731: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1806: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1807: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1827: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1850: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1899: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1900: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1931: High: fixed size local buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1981: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:258: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:265: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:271: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:385: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:437: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:465: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:485: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:496: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:517: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:717: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:727: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:747: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:755: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:768: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:789: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:823: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:845: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:846: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:851: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:883: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:994: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1001: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1016: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1017: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1033: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1043: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1049: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1067: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1087: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1095: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1127: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1135: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1145: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1208: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1211: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1240: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1278: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1459: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1533: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1701: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1820: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1904: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:2005: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:2011: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:2018: High: strcpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:2025: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:445: High: sscanf Check to be sure that the format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. Additionally, the format string could contain `%s' without precision that could result in a buffer overflow. /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:467: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:487: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:498: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:519: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:718: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:719: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:728: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:729: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:748: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:749: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:756: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:757: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:769: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:771: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:790: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:792: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:812: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:824: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:825: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:852: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:853: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:860: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:884: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:885: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:995: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1002: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1003: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1018: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1019: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1034: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1044: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1050: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1068: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1070: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1088: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1096: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1136: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1137: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1138: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1146: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1182: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1209: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1210: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1212: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1213: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1279: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1461: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1535: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1702: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1822: High: strcat /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1905: High: strcat Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:2052: High: getopt_long Truncate all input strings to a reasonable length before passing them to this function /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:468: Medium: stat A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. The following line(s) contain uses that may match up with this check: 520 (fopen) /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:720: Low: stat A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. No matching uses were detected. /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:998: Low: stat A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. No matching uses were detected. /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1037: Low: stat A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. No matching uses were detected. /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:47: Low: fixed size global buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:171: Low: fixed size global buffer /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:172: Low: fixed size global buffer Extra care should be taken to ensure that character arrays that are allocated with a static size are used safely. This appears to be a global allocation and is less dangerous than a similar one on the stack. Extra caution is still advised, however. /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:250: Low: strncpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:254: Low: strncpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:308: Low: strncpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:340: Low: strncpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:351: Low: strncpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:593: Low: strncpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:668: Low: strncpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1720: Low: strncpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1918: Low: strncpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1954: Low: strncpy /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:2093: Low: strncpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. Also, consider using strlcpy() instead, if it is avaialable to you. /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:262: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:339: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:386: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:529: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:733: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:736: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:759: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:776: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:808: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:808: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:809: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:809: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:809: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:816: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:996: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1021: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1035: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1045: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1051: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1055: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1058: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1074: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1089: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1097: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1128: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1147: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1280: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1944: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:2003: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:2009: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:2016: Low: strlen /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:2023: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:289: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:387: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:563: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:722: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:732: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:758: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:775: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:818: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:828: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:997: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1020: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1036: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1039: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1046: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1052: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1054: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1073: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1083: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1090: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1098: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1106: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1129: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1148: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1281: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1505: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1508: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1536: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1582: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1585: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1608: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1611: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1708: Low: snprintf /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1910: Low: snprintf Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:444: Low: fgets /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:523: Low: fgets Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:286: Low: scandir /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:321: Low: scandir /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:365: Low: scandir /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:407: Low: scandir /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1704: Low: scandir /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1907: Low: scandir A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:390: Low: stat A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. No matching uses were detected. /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:431: Low: fopen A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:434: Low: opendir /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:555: Low: opendir A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:567: Low: lstat A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. No matching uses were detected. /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:847: Low: basename /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1015: Low: basename /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1180: Low: basename /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1506: Low: basename /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1583: Low: basename /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1609: Low: basename /tmp/bogosec.temp_target.dTIdct/src/lsscsi.c:1832: Low: basename A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 2161 Total time 0.010218 seconds 211489 lines per second