COMMAND : rats -w 3 Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.zXtUV1/src/wireless.c /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:80: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:115: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:167: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:222: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:274: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:299: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:94: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:121: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:176: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:188: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:267: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:268: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:275: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:308: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:314: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:320: High: sprintf Check to be sure that the format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. Additionally, the format string could contain `%s' without precision that could result in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:95: High: popen /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:122: High: popen Argument 1 to this function call should be checked to ensure that it does not come from an untrusted source without first verifying that it contains nothing dangerous. /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:178: High: strcpy /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:190: High: strcpy /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:230: High: strcpy /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:249: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:276: High: system Argument 1 to this function call should be checked to ensure that it does not come from an untrusted source without first verifying that it contains nothing dangerous. /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:308: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:314: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:320: High: sprintf Check to be sure that the non-constant format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:69: Medium: fgetc /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:89: Medium: fgetc /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:154: Medium: fgetc Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:63: Medium: access A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. The following line(s) contain uses that may match up with this check: 66 (fopen), 86 (fopen) /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:145: Medium: access A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. The following line(s) contain uses that may match up with this check: 151 (fopen) /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:177: Low: access A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. No matching uses were detected. /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:189: Low: access A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. No matching uses were detected. /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:53: Low: fixed size global buffer /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:54: Low: fixed size global buffer /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:55: Low: fixed size global buffer Extra care should be taken to ensure that character arrays that are allocated with a static size are used safely. This appears to be a global allocation and is less dangerous than a similar one on the stack. Extra caution is still advised, however. /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:61: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:81: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:143: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:238: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:302: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:100: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:127: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:224: Low: fgets Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:172: Low: opendir /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:182: Low: opendir A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:281: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/wireless.c:291: Low: fopen A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 326 Total time 0.008136 seconds 40068 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000017 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:40: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:41: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:66: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:67: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:135: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:136: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:137: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:206: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:73: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:80: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:100: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:107: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:123: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:148: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:149: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:207: High: sprintf Check to be sure that the format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. Additionally, the format string could contain `%s' without precision that could result in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:98: High: strcpy /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:121: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:123: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:207: High: sprintf Check to be sure that the non-constant format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:77: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:84: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:104: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:111: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:154: Low: fgets Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:115: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:115: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:116: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:117: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:117: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:118: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:120: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:74: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:81: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:101: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:108: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:150: Low: fopen A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.zXtUV1/src/urbnum.c:140: Low: opendir A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 220 Total time 0.000300 seconds 733333 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.zXtUV1/src/config.c /tmp/bogosec.temp_target.zXtUV1/src/config.c:42: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/config.c:43: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/config.c:49: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/config.c:77: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/config.c:92: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/config.c:93: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.zXtUV1/src/config.c:52: High: strcpy /tmp/bogosec.temp_target.zXtUV1/src/config.c:80: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/config.c:68: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/config.c:71: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/config.c:98: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/config.c:99: High: sprintf Check to be sure that the format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. Additionally, the format string could contain `%s' without precision that could result in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/config.c:36: Low: fixed size global buffer Extra care should be taken to ensure that character arrays that are allocated with a static size are used safely. This appears to be a global allocation and is less dangerous than a similar one on the stack. Extra caution is still advised, however. /tmp/bogosec.temp_target.zXtUV1/src/config.c:50: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/config.c:60: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/config.c:78: Low: fgets Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.zXtUV1/src/config.c:46: Low: access A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. No matching uses were detected. /tmp/bogosec.temp_target.zXtUV1/src/config.c:57: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/config.c:69: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/config.c:72: Low: fopen A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 113 Total time 0.000195 seconds 579487 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.zXtUV1/src/sata.c /tmp/bogosec.temp_target.zXtUV1/src/sata.c:42: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/sata.c:68: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/sata.c:69: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.zXtUV1/src/sata.c:51: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/sata.c:83: High: sprintf Check to be sure that the format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. Additionally, the format string could contain `%s' without precision that could result in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/sata.c:88: Low: fgets Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.zXtUV1/src/sata.c:44: Low: opendir /tmp/bogosec.temp_target.zXtUV1/src/sata.c:76: Low: opendir A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.zXtUV1/src/sata.c:52: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/sata.c:84: Low: fopen A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 107 Total time 0.000190 seconds 563157 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.zXtUV1/src/bluetooth.c /tmp/bogosec.temp_target.zXtUV1/src/bluetooth.c:68: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/bluetooth.c:134: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.zXtUV1/src/bluetooth.c:136: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/bluetooth.c:138: Low: fgets Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.zXtUV1/src/bluetooth.c:140: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.zXtUV1/src/bluetooth.c:108: Low: access A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. No matching uses were detected. /tmp/bogosec.temp_target.zXtUV1/src/bluetooth.c:122: Low: access A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. No matching uses were detected. Total lines analyzed: 152 Total time 0.000185 seconds 821621 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.zXtUV1/src/misctips.c /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:49: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:98: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:119: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:162: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:187: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:221: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:284: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:296: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:297: High: sprintf Check to be sure that the non-constant format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:297: High: sprintf Check to be sure that the format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. Additionally, the format string could contain `%s' without precision that could result in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:150: Medium: access A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. The following line(s) contain uses that may match up with this check: 152 (fopen) /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:60: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:73: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:103: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:125: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:167: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:194: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:229: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:249: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:290: Low: fgets Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:38: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:56: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:69: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:88: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:99: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:120: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:145: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:163: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:189: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:211: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:225: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:242: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:274: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/misctips.c:286: Low: fopen A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 305 Total time 0.000340 seconds 897058 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.zXtUV1/src/xrandr.c /tmp/bogosec.temp_target.zXtUV1/src/xrandr.c:48: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.zXtUV1/src/xrandr.c:60: Low: fgets Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. Total lines analyzed: 83 Total time 0.000130 seconds 638461 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.zXtUV1/src/usb.c /tmp/bogosec.temp_target.zXtUV1/src/usb.c:40: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/usb.c:71: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/usb.c:72: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.zXtUV1/src/usb.c:49: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/usb.c:55: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/usb.c:83: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/usb.c:98: High: sprintf Check to be sure that the format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. Additionally, the format string could contain `%s' without precision that could result in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/usb.c:88: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/usb.c:103: Low: fgets Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.zXtUV1/src/usb.c:42: Low: opendir /tmp/bogosec.temp_target.zXtUV1/src/usb.c:76: Low: opendir A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.zXtUV1/src/usb.c:50: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/usb.c:56: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/usb.c:84: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/usb.c:99: Low: fopen A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 126 Total time 0.000217 seconds 580645 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.zXtUV1/src/suggestions.c /tmp/bogosec.temp_target.zXtUV1/src/suggestions.c:135: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/suggestions.c:58: Low: fixed size global buffer Extra care should be taken to ensure that character arrays that are allocated with a static size are used safely. This appears to be a global allocation and is less dangerous than a similar one on the stack. Extra caution is still advised, however. /tmp/bogosec.temp_target.zXtUV1/src/suggestions.c:119: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.zXtUV1/src/suggestions.c:129: Low: strncpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. Also, consider using strlcpy() instead, if it is avaialable to you. Total lines analyzed: 153 Total time 0.000192 seconds 796875 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.zXtUV1/src/powertop.c /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:63: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:175: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:176: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:269: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:320: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:321: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:488: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:501: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:575: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:591: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:685: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:841: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:121: High: strcpy /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:166: High: strcpy /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:168: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:247: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:249: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:252: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:799: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:805: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:808: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:821: High: sprintf Check to be sure that the non-constant format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:247: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:249: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:252: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:282: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:339: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:353: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:372: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:381: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:394: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:506: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:596: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:607: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:618: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:628: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:638: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:799: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:805: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:808: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:821: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:896: High: sprintf Check to be sure that the format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. Additionally, the format string could contain `%s' without precision that could result in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:676: High: printf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:677: High: printf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:678: High: printf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:679: High: printf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:742: High: printf /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:743: High: printf Check to be sure that the non-constant format string passed as argument 1 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:704: High: getopt_long Truncate all input strings to a reasonable length before passing them to this function /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:98: Medium: realloc /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:117: Medium: realloc Don't use on memory intended to be secure, because the old structure will not be zeroed out. /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:601: Medium: getc Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:942: Medium: fgetc Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:44: Low: fixed size global buffer /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:672: Low: fixed size global buffer Extra care should be taken to ensure that character arrays that are allocated with a static size are used safely. This appears to be a global allocation and is less dangerous than a similar one on the stack. Extra caution is still advised, however. /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:192: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:291: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:358: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:387: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:400: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:511: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:612: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:623: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:633: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:643: Low: fgets /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:845: Low: fgets Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:221: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:280: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:333: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:351: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:503: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:729: Low: memcpy /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:730: Low: memcpy /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:1065: Low: memcpy /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:1066: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:183: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:283: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:354: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:382: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:395: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:447: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:458: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:507: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:597: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:608: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:619: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:629: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:639: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:838: Low: fopen A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:276: Low: opendir /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:327: Low: opendir /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:342: Low: opendir /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:490: Low: opendir /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:580: Low: opendir A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:424: Low: stat A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. No matching uses were detected. /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:434: Low: stat A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. No matching uses were detected. /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:972: Low: access A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. No matching uses were detected. /tmp/bogosec.temp_target.zXtUV1/src/powertop.c:973: Low: access A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. No matching uses were detected. Total lines analyzed: 1074 Total time 0.001240 seconds 866129 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.zXtUV1/src/process.c /tmp/bogosec.temp_target.zXtUV1/src/process.c:42: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/process.c:67: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/process.c:83: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.zXtUV1/src/process.c:72: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/process.c:84: High: sprintf Check to be sure that the format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. Additionally, the format string could contain `%s' without precision that could result in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/process.c:73: High: system Argument 1 to this function call should be checked to ensure that it does not come from an untrusted source without first verifying that it contains nothing dangerous. /tmp/bogosec.temp_target.zXtUV1/src/process.c:84: High: sprintf Check to be sure that the non-constant format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.zXtUV1/src/process.c:85: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/process.c:37: Low: fixed size global buffer Extra care should be taken to ensure that character arrays that are allocated with a static size are used safely. This appears to be a global allocation and is less dangerous than a similar one on the stack. Extra caution is still advised, however. /tmp/bogosec.temp_target.zXtUV1/src/process.c:52: Low: fgets Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. Total lines analyzed: 93 Total time 0.000157 seconds 592356 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.zXtUV1/src/intelcstates.c /tmp/bogosec.temp_target.zXtUV1/src/intelcstates.c:73: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/intelcstates.c:74: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.zXtUV1/src/intelcstates.c:93: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/intelcstates.c:105: High: sprintf Check to be sure that the format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. Additionally, the format string could contain `%s' without precision that could result in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/intelcstates.c:136: High: printf /tmp/bogosec.temp_target.zXtUV1/src/intelcstates.c:145: High: printf Check to be sure that the non-constant format string passed as argument 1 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.zXtUV1/src/intelcstates.c:87: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/intelcstates.c:103: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.zXtUV1/src/intelcstates.c:110: Low: fgets Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.zXtUV1/src/intelcstates.c:81: Low: opendir /tmp/bogosec.temp_target.zXtUV1/src/intelcstates.c:96: Low: opendir A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.zXtUV1/src/intelcstates.c:106: Low: fopen A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 152 Total time 0.000200 seconds 760000 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.zXtUV1/src/ethernet.c Total lines analyzed: 139 Total time 0.000205 seconds 678048 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.zXtUV1/src/display.c /tmp/bogosec.temp_target.zXtUV1/src/display.c:108: High: strcpy /tmp/bogosec.temp_target.zXtUV1/src/display.c:109: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/display.c:194: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.zXtUV1/src/display.c:196: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/display.c:201: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/display.c:205: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/display.c:208: High: sprintf Check to be sure that the non-constant format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.zXtUV1/src/display.c:196: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/display.c:201: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/display.c:205: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/display.c:208: High: sprintf Check to be sure that the format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. Additionally, the format string could contain `%s' without precision that could result in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/display.c:48: Low: fixed size global buffer Extra care should be taken to ensure that character arrays that are allocated with a static size are used safely. This appears to be a global allocation and is less dangerous than a similar one on the stack. Extra caution is still advised, however. /tmp/bogosec.temp_target.zXtUV1/src/display.c:154: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/display.c:159: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/display.c:174: Low: strlen /tmp/bogosec.temp_target.zXtUV1/src/display.c:203: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. Total lines analyzed: 279 Total time 0.000396 seconds 704545 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.zXtUV1/src/cpufreq.c /tmp/bogosec.temp_target.zXtUV1/src/cpufreq.c:40: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/cpufreq.c:68: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/cpufreq.c:69: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/cpufreq.c:71: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.zXtUV1/src/cpufreq.c:52: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/cpufreq.c:85: High: sprintf Check to be sure that the format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. Additionally, the format string could contain `%s' without precision that could result in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/cpufreq.c:95: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/cpufreq.c:90: Low: fgets Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.zXtUV1/src/cpufreq.c:94: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.zXtUV1/src/cpufreq.c:45: Low: opendir /tmp/bogosec.temp_target.zXtUV1/src/cpufreq.c:78: Low: opendir A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.zXtUV1/src/cpufreq.c:53: Low: fopen /tmp/bogosec.temp_target.zXtUV1/src/cpufreq.c:86: Low: fopen A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 121 Total time 0.000195 seconds 620512 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:67: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:92: High: fixed size local buffer /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:93: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:74: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:77: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:80: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:101: High: sprintf Check to be sure that the non-constant format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:74: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:77: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:80: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:101: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:114: High: sprintf /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:169: High: sprintf Check to be sure that the format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. Additionally, the format string could contain `%s' without precision that could result in a buffer overflow. /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:45: Low: fixed size global buffer Extra care should be taken to ensure that character arrays that are allocated with a static size are used safely. This appears to be a global allocation and is less dangerous than a similar one on the stack. Extra caution is still advised, however. /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:99: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:124: Low: fgets Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:106: Low: opendir A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. /tmp/bogosec.temp_target.zXtUV1/src/cpufreqstats.c:115: Low: fopen A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 175 Total time 0.000232 seconds 754310 lines per second