gitlab.flawfinder.fscanf-1.sscanf-1.vsscanf-1.vfscanf-1._ftscanf-1.fwscanf-1.vfwscanf-1.vswscanf-1
137
Download Count*
License
Specify a limit to %s, or use a different input function.
Run Locally
Run in CI
Defintion
rules:
- id: flawfinder.fscanf-1.sscanf-1.vsscanf-1.vfscanf-1._ftscanf-1.fwscanf-1.vfwscanf-1.vswscanf-1
languages:
- c
message: |
Specify a limit to %s, or use a different input function.
metadata:
cwe: "CWE-120: The scanf() family's %s operation, without a limit specification,
permits buffer overflows (CWE-120, CWE-20)"
primary_identifier: flawfinder.fscanf-1.sscanf-1.vsscanf-1.vfscanf-1._ftscanf-1.fwscanf-1.vfwscanf-1.vswscanf-1
secondary_identifiers:
- name: Flawfinder - fscanf
type: flawfinder_func_name
value: fscanf
- name: Flawfinder - sscanf
type: flawfinder_func_name
value: sscanf
- name: Flawfinder - vsscanf
type: flawfinder_func_name
value: vsscanf
- name: Flawfinder - vfscanf
type: flawfinder_func_name
value: vfscanf
- name: Flawfinder - _ftscanf
type: flawfinder_func_name
value: _ftscanf
- name: Flawfinder - fwscanf
type: flawfinder_func_name
value: fwscanf
- name: Flawfinder - vfwscanf
type: flawfinder_func_name
value: vfwscanf
- name: Flawfinder - vswscanf
type: flawfinder_func_name
value: vswscanf
license: MIT
pattern-either:
- pattern: fscanf(...)
- pattern: sscanf(...)
- pattern: vsscanf(...)
- pattern: vfscanf(...)
- pattern: _ftscanf(...)
- pattern: fwscanf(...)
- pattern: vfwscanf(...)
- pattern: vswscanf(...)
severity: ERROR
Short Link: https://sg.run/O8Xe