gitlab.flawfinder.lstrcpyn-1.wcsncpy-1._tcsncpy-1._mbsnbcpy-1

137

Download Count*

MIT

License

Easily used incorrectly

Run Locally

Run in CI

Semgrep CI docs

Defintion

Edit Rule View Source

Open in Playground

rules:
  - id: flawfinder.lstrcpyn-1.wcsncpy-1._tcsncpy-1._mbsnbcpy-1
    languages:
      - c
    message: |
      Easily used incorrectly
    metadata:
      cwe: "CWE-120: Doesn't always \\0-terminate or check for invalid pointers
        [MS-banned] (CWE-120)"
      primary_identifier: flawfinder.lstrcpyn-1.wcsncpy-1._tcsncpy-1._mbsnbcpy-1
      secondary_identifiers:
        - name: Flawfinder - lstrcpyn
          type: flawfinder_func_name
          value: lstrcpyn
        - name: Flawfinder - wcsncpy
          type: flawfinder_func_name
          value: wcsncpy
        - name: Flawfinder - _tcsncpy
          type: flawfinder_func_name
          value: _tcsncpy
        - name: Flawfinder - _mbsnbcpy
          type: flawfinder_func_name
          value: _mbsnbcpy
      license: MIT
    pattern-either:
      - pattern: lstrcpyn(...)
      - pattern: wcsncpy(...)
      - pattern: _tcsncpy(...)
      - pattern: _mbsnbcpy(...)
    severity: INFO

Short Link: https://sg.run/347g