Ticket #16124: webpositive-flawfinder.txt

File webpositive-flawfinder.txt, 3.6 KB (added by Coldfirex, 3 years ago)
Line 
1/boot/home/Desktop/sources/haiku/src/apps/webpositive/BookmarkBar.cpp:196: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length.
2
3 char name[B_FILE_NAME_LENGTH];
4
5/boot/home/Desktop/sources/haiku/src/apps/webpositive/BrowserWindow.cpp:669: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length.
6
7 char numStr[2];
8
9/boot/home/Desktop/sources/haiku/src/apps/webpositive/BrowserWindow.cpp:2068: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length.
10
11 char entryName[B_FILE_NAME_LENGTH];
12
13/boot/home/Desktop/sources/haiku/src/apps/webpositive/BrowserWindow.cpp:2466: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length.
14
15 char hexcode[4];
16
17/boot/home/Desktop/sources/haiku/src/apps/webpositive/BrowserWindow.cpp:2470: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length.
18
19 sprintf(hexcode, "%02X", (unsigned int)result[i]);
20
21/boot/home/Desktop/sources/haiku/src/apps/webpositive/BrowserWindow.cpp:2686: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length.
22
23 char buffer[1024];
24
25/boot/home/Desktop/sources/haiku/src/apps/webpositive/DownloadProgressView.cpp:483: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length.
26
27 char trashPath[B_PATH_NAME_LENGTH];
28
29/boot/home/Desktop/sources/haiku/src/apps/webpositive/DownloadProgressView.cpp:749: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length.
30
31 char sizeBuffer[128];
32
33/boot/home/Desktop/sources/haiku/src/apps/webpositive/support/FontSelectionView.cpp:461: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length.
34
35 char label[16];
36
37/boot/home/Desktop/sources/haiku/src/apps/webpositive/support/FontSelectionView.cpp:488: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length.
38
39 char label[32];
40