gitlab.flawfinder.StrCat-1.StrCatA-1.StrcatW-1.lstrcatA-1.lstrcatW-1.strCatBuff-1.StrCatBuffA-1.StrCatBuffW-1.StrCatChainW-1._tccat-1._mbccat-1._ftcscat-1.StrCatN-1.StrCatNA-1.StrCatNW-1.StrNCat-1.StrNCatA-1.StrNCatW-1.lstrncat-1.lstrcatnA-1.lstrcatnW-1
137
Download Count*
License
Buffer overflow is not checked.
Run Locally
Run in CI
Defintion
rules:
- id: flawfinder.StrCat-1.StrCatA-1.StrcatW-1.lstrcatA-1.lstrcatW-1.strCatBuff-1.StrCatBuffA-1.StrCatBuffW-1.StrCatChainW-1._tccat-1._mbccat-1._ftcscat-1.StrCatN-1.StrCatNA-1.StrCatNW-1.StrNCat-1.StrNCatA-1.StrNCatW-1.lstrncat-1.lstrcatnA-1.lstrcatnW-1
languages:
- c
message: |
Buffer overflow is not checked.
metadata:
cwe: "CWE-120: Does not check for buffer overflows when concatenating to
destination [MS-banned] (CWE-120)"
primary_identifier: flawfinder.StrCat-1.StrCatA-1.StrcatW-1.lstrcatA-1.lstrcatW-1.strCatBuff-1.StrCatBuffA-1.StrCatBuffW-1.StrCatChainW-1._tccat-1._mbccat-1._ftcscat-1.StrCatN-1.StrCatNA-1.StrCatNW-1.StrNCat-1.StrNCatA-1.StrNCatW-1.lstrncat-1.lstrcatnA-1.lstrcatnW-1
secondary_identifiers:
- name: Flawfinder - StrCat
type: flawfinder_func_name
value: StrCat
- name: Flawfinder - StrCatA
type: flawfinder_func_name
value: StrCatA
- name: Flawfinder - StrcatW
type: flawfinder_func_name
value: StrcatW
- name: Flawfinder - lstrcatA
type: flawfinder_func_name
value: lstrcatA
- name: Flawfinder - lstrcatW
type: flawfinder_func_name
value: lstrcatW
- name: Flawfinder - strCatBuff
type: flawfinder_func_name
value: strCatBuff
- name: Flawfinder - StrCatBuffA
type: flawfinder_func_name
value: StrCatBuffA
- name: Flawfinder - StrCatBuffW
type: flawfinder_func_name
value: StrCatBuffW
- name: Flawfinder - StrCatChainW
type: flawfinder_func_name
value: StrCatChainW
- name: Flawfinder - _tccat
type: flawfinder_func_name
value: _tccat
- name: Flawfinder - _mbccat
type: flawfinder_func_name
value: _mbccat
- name: Flawfinder - _ftcscat
type: flawfinder_func_name
value: _ftcscat
- name: Flawfinder - StrCatN
type: flawfinder_func_name
value: StrCatN
- name: Flawfinder - StrCatNA
type: flawfinder_func_name
value: StrCatNA
- name: Flawfinder - StrCatNW
type: flawfinder_func_name
value: StrCatNW
- name: Flawfinder - StrNCat
type: flawfinder_func_name
value: StrNCat
- name: Flawfinder - StrNCatA
type: flawfinder_func_name
value: StrNCatA
- name: Flawfinder - StrNCatW
type: flawfinder_func_name
value: StrNCatW
- name: Flawfinder - lstrncat
type: flawfinder_func_name
value: lstrncat
- name: Flawfinder - lstrcatnA
type: flawfinder_func_name
value: lstrcatnA
- name: Flawfinder - lstrcatnW
type: flawfinder_func_name
value: lstrcatnW
license: MIT
pattern-either:
- pattern: StrCat(...)
- pattern: StrCatA(...)
- pattern: StrcatW(...)
- pattern: lstrcatA(...)
- pattern: lstrcatW(...)
- pattern: strCatBuff(...)
- pattern: StrCatBuffA(...)
- pattern: StrCatBuffW(...)
- pattern: StrCatChainW(...)
- pattern: _tccat(...)
- pattern: _mbccat(...)
- pattern: _ftcscat(...)
- pattern: StrCatN(...)
- pattern: StrCatNA(...)
- pattern: StrCatNW(...)
- pattern: StrNCat(...)
- pattern: StrNCatA(...)
- pattern: StrNCatW(...)
- pattern: lstrncat(...)
- pattern: lstrcatnA(...)
- pattern: lstrcatnW(...)
severity: ERROR
Short Link: https://sg.run/kkoX