|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2175: example_checked: "get_token(fp, token, 128)" has its value checked in "(type = get_token(fp, token, 128)) != 0". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2175: example_checked: "get_token(fp, token, 128)" has its value checked in "(type = get_token(fp, token, 128)) != 0". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:4849: unchecked_value: No check of the return value of "get_token(fp, token, 128)". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:4849: unchecked_value: No check of the return value of "get_token(fp, token, 128)". |
| + | jsafranek: fixed in 5.4+, 5949f05 |
| | | |
| Error: CHECKED_RETURN (CWE-252): | | Error: CHECKED_RETURN (CWE-252): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2175: example_checked: "get_token(fp, token, 128)" has its value checked in "(type = get_token(fp, token, 128)) != 0". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2175: example_checked: "get_token(fp, token, 128)" has its value checked in "(type = get_token(fp, token, 128)) != 0". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:4987: unchecked_value: No check of the return value of "get_token(fp, token, 128)". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:4987: unchecked_value: No check of the return value of "get_token(fp, token, 128)". |
| + | jsafranek: false positive |
| | | |
| Error: CHECKED_RETURN (CWE-252): | | Error: CHECKED_RETURN (CWE-252): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/agent_index.c:638: example_checked: "sprint_realloc_objid(&sbuf, &sbuf_len, &sout_len, 1, idxptr->varbind->name, idxptr->varbind->name_length)" has its value checked in "sprint_realloc_objid(&sbuf, &sbuf_len, &sout_len, 1, idxptr->varbind->name, idxptr->varbind->name_length)". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/agent_index.c:638: example_checked: "sprint_realloc_objid(&sbuf, &sbuf_len, &sout_len, 1, idxptr->varbind->name, idxptr->varbind->name_length)" has its value checked in "sprint_realloc_objid(&sbuf, &sbuf_len, &sout_len, 1, idxptr->varbind->name, idxptr->varbind->name_length)". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/cache_handler.c:246: unchecked_value: No check of the return value of "sprint_realloc_objid((u_char **)&buf, &buf_len, &out_len, 1, pos->rootoid, pos->rootoid_len)". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/cache_handler.c:246: unchecked_value: No check of the return value of "sprint_realloc_objid((u_char **)&buf, &buf_len, &out_len, 1, pos->rootoid, pos->rootoid_len)". |
| + | jsafranek: false positive |
| | | |
| Error: CHECKED_RETURN (CWE-252): | | Error: CHECKED_RETURN (CWE-252): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/ipv6.c:402: example_checked: "register_mib("mibII/ipv6udp", (struct variable *)ipv6udp_variables, sizeof (struct variable2) /*40*/, 1UL, ipv6udp_variables_oid, 8UL)" has its value checked in "register_mib("mibII/ipv6udp", (struct variable *)ipv6udp_variables, sizeof (struct variable2) /*40*/, 1UL, ipv6udp_variables_oid, 8UL) != 0". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/ipv6.c:402: example_checked: "register_mib("mibII/ipv6udp", (struct variable *)ipv6udp_variables, sizeof (struct variable2) /*40*/, 1UL, ipv6udp_variables_oid, 8UL)" has its value checked in "register_mib("mibII/ipv6udp", (struct variable *)ipv6udp_variables, sizeof (struct variable2) /*40*/, 1UL, ipv6udp_variables_oid, 8UL) != 0". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:1157: unchecked_value: No check of the return value of "register_mib("smux", (struct variable *)smux_variables, sizeof (struct variable2) /*40*/, 1UL, nrptr->sr_name, nrptr->sr_name_len)". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:1157: unchecked_value: No check of the return value of "register_mib("smux", (struct variable *)smux_variables, sizeof (struct variable2) /*40*/, 1UL, nrptr->sr_name, nrptr->sr_name_len)". |
| + | jsafranek: fixed in 5.4+, a809fe5 |
| | | |
| Error: CHECKED_RETURN (CWE-252): | | Error: CHECKED_RETURN (CWE-252): |
|
|
| Error: CONSTANT_EXPRESSION_RESULT (CWE-569): | | Error: CONSTANT_EXPRESSION_RESULT (CWE-569): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-mib/data_access/ipaddress_ioctl.c:233: operator_confusion: entry->flags | 0x10000000 is always 1/true regardless of the values of its operand. This occurs as the logical operand of if. Did you intend to use '&' rather than '|'? | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-mib/data_access/ipaddress_ioctl.c:233: operator_confusion: entry->flags | 0x10000000 is always 1/true regardless of the values of its operand. This occurs as the logical operand of if. Did you intend to use '&' rather than '|'? |
| + | jsafranek:Fixed in 5.4+, b2b1c85 |
| | | |
| Error: CONSTANT_EXPRESSION_RESULT (CWE-569): | | Error: CONSTANT_EXPRESSION_RESULT (CWE-569): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/sctp-mib/sctpTables_common.c:438: operator_confusion: flags | 1UL is always 1/true regardless of the values of its operand. This occurs as the logical operand of if. Did you intend to use '&' rather than '|'? | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/sctp-mib/sctpTables_common.c:438: operator_confusion: flags | 1UL is always 1/true regardless of the values of its operand. This occurs as the logical operand of if. Did you intend to use '&' rather than '|'? |
| + | jsafranek:Fixed in 5.4+, b1a2bcf |
| | | |
| Error: CONSTANT_EXPRESSION_RESULT (CWE-569): | | Error: CONSTANT_EXPRESSION_RESULT (CWE-569): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/sctp-mib/sctpTables_common.c:446: operator_confusion: flags | 1UL is always 1/true regardless of the values of its operand. This occurs as the logical operand of if. Did you intend to use '&' rather than '|'? | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/sctp-mib/sctpTables_common.c:446: operator_confusion: flags | 1UL is always 1/true regardless of the values of its operand. This occurs as the logical operand of if. Did you intend to use '&' rather than '|'? |
| + | jsafranek:Fixed in 5.4+, b1a2bcf |
| | | |
| Error: CONSTANT_EXPRESSION_RESULT (CWE-569): | | Error: CONSTANT_EXPRESSION_RESULT (CWE-569): |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:506: result_independent_of_operands: (rval = -1) != 0 is always true regardless of the values of its operands. This occurs as the logical operand of if. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:506: result_independent_of_operands: (rval = -1) != 0 is always true regardless of the values of its operands. This occurs as the logical operand of if. |
| + | jsafranek:Fixed in 5.4+, dab3286 |
| | | |
| Error: CONSTANT_EXPRESSION_RESULT (CWE-569): | | Error: CONSTANT_EXPRESSION_RESULT (CWE-569): |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:512: result_independent_of_operands: (rval = -1) != 0 is always true regardless of the values of its operands. This occurs as the logical operand of if. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:512: result_independent_of_operands: (rval = -1) != 0 is always true regardless of the values of its operands. This occurs as the logical operand of if. |
| + | jsafranek:Fixed in 5.4+, dab3286 |
| | | |
| Error: CONSTANT_EXPRESSION_RESULT (CWE-569): | | Error: CONSTANT_EXPRESSION_RESULT (CWE-569): |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:523: result_independent_of_operands: (rval = -1) != 0 is always true regardless of the values of its operands. This occurs as the logical operand of if. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:523: result_independent_of_operands: (rval = -1) != 0 is always true regardless of the values of its operands. This occurs as the logical operand of if. |
| + | jsafranek:Fixed in 5.4+, dab3286 |
| | | |
| Error: CONSTANT_EXPRESSION_RESULT (CWE-569): | | Error: CONSTANT_EXPRESSION_RESULT (CWE-569): |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:528: result_independent_of_operands: (rval = -1) != 0 is always true regardless of the values of its operands. This occurs as the logical operand of if. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:528: result_independent_of_operands: (rval = -1) != 0 is always true regardless of the values of its operands. This occurs as the logical operand of if. |
| + | jsafranek:Fixed in 5.4+, dab3286 |
| | | |
| Error: CONSTANT_EXPRESSION_RESULT (CWE-569): | | Error: CONSTANT_EXPRESSION_RESULT (CWE-569): |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:537: result_independent_of_operands: (rval = -1) != 0 is always true regardless of the values of its operands. This occurs as the logical operand of if. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:537: result_independent_of_operands: (rval = -1) != 0 is always true regardless of the values of its operands. This occurs as the logical operand of if. |
| + | jsafranek:Fixed in 5.4+, dab3286 |
| | | |
| Error: CONSTANT_EXPRESSION_RESULT (CWE-569): | | Error: CONSTANT_EXPRESSION_RESULT (CWE-569): |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:204: result_independent_of_operands: (rval = -1) != 0 is always true regardless of the values of its operands. This occurs as the logical operand of if. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:204: result_independent_of_operands: (rval = -1) != 0 is always true regardless of the values of its operands. This occurs as the logical operand of if. |
| + | jsafranek:Fixed in 5.4+, dab3286 |
| | | |
| Error: CONSTANT_EXPRESSION_RESULT (CWE-569): | | Error: CONSTANT_EXPRESSION_RESULT (CWE-569): |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:257: result_independent_of_operands: (rval = -1) != 0 is always true regardless of the values of its operands. This occurs as the logical operand of if. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:257: result_independent_of_operands: (rval = -1) != 0 is always true regardless of the values of its operands. This occurs as the logical operand of if. |
| + | jsafranek:Fixed in 5.4+, dab3286 |
| | | |
| Error: CONSTANT_EXPRESSION_RESULT (CWE-569): | | Error: CONSTANT_EXPRESSION_RESULT (CWE-569): |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:262: result_independent_of_operands: (rval = -1) != 0 is always true regardless of the values of its operands. This occurs as the logical operand of if. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:262: result_independent_of_operands: (rval = -1) != 0 is always true regardless of the values of its operands. This occurs as the logical operand of if. |
| + | jsafranek:Fixed in 5.4+, dab3286 |
| | | |
| Error: CONSTANT_EXPRESSION_RESULT (CWE-569): | | Error: CONSTANT_EXPRESSION_RESULT (CWE-569): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSTCPDomain.c:419: operator_confusion: tlsdata->flags | 1 is always 1/true regardless of the values of its operand. This occurs as the logical first operand of '&&'. Did you intend to use '&' rather than '|'? | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSTCPDomain.c:419: operator_confusion: tlsdata->flags | 1 is always 1/true regardless of the values of its operand. This occurs as the logical first operand of '&&'. Did you intend to use '&' rather than '|'? |
| + | jsafranek:Fixed in 5.6+, dc6f0e2 |
| </pre> | | </pre> |
| | | |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/agent_registry.c:797: assignment: Assigning: "new2" = "NULL". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/agent_registry.c:797: assignment: Assigning: "new2" = "NULL". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/agent_registry.c:827: dead_error_line: Execution cannot reach this statement "return netsnmp_subtree_load...". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/agent_registry.c:827: dead_error_line: Execution cannot reach this statement "return netsnmp_subtree_load...". |
| + | jsafranek: false positive |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_client.c:815: cannot_single: After this line (or expression), the value of "value" cannot be 0. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_client.c:815: cannot_single: After this line (or expression), the value of "value" cannot be 0. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_client.c:903: dead_error_line: Execution cannot reach this statement "*vars->val.integer = 0L;". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_client.c:903: dead_error_line: Execution cannot reach this statement "*vars->val.integer = 0L;". |
| + | jsafranek: fixed in 5.4+, ebd92e1 |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:771: assignment: Assigning: "enable" = "1". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:771: assignment: Assigning: "enable" = "1". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:813: dead_error_line: Execution cannot reach this statement "netsnmp_disable_this_loghan...". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:813: dead_error_line: Execution cannot reach this statement "netsnmp_disable_this_loghan...". |
| + | jsafranek: false positive (ifdefs) |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:800: equality_cond: Condition "enable" is evaluated as true. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:800: equality_cond: Condition "enable" is evaluated as true. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:799: dead_error_line: Execution cannot reach this statement "netsnmp_disable_this_loghan...". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:799: dead_error_line: Execution cannot reach this statement "netsnmp_disable_this_loghan...". |
| + | jsafranek: false positive (ifdefs) |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-mib/data_access/ipaddress_ioctl.c:178: cannot_single: After this line (or expression), the value of "entry" cannot be 0. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-mib/data_access/ipaddress_ioctl.c:178: cannot_single: After this line (or expression), the value of "entry" cannot be 0. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-mib/data_access/ipaddress_ioctl.c:246: dead_error_begin: Execution cannot reach this statement "rc = -3;". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-mib/data_access/ipaddress_ioctl.c:246: dead_error_begin: Execution cannot reach this statement "rc = -3;". |
| + | jsafranek: fixed in 5.5+, 38fd637 |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/data_access/swrun_procfs_status.c:119: cannot_single: After this line (or expression), the value of "cp" cannot be 0. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/data_access/swrun_procfs_status.c:119: cannot_single: After this line (or expression), the value of "cp" cannot be 0. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/data_access/swrun_procfs_status.c:148: dead_error_begin: Execution cannot reach this statement "memcpy(entry->hrSWRunPath, ...". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/data_access/swrun_procfs_status.c:148: dead_error_begin: Execution cannot reach this statement "memcpy(entry->hrSWRunPath, ...". |
| + | jsafranek: fixed in 5.6+, 2a8a8f2 |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_disk.c:550: assignment: Assigning: "LowIndex" = "-1". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_disk.c:550: assignment: Assigning: "LowIndex" = "-1". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_disk.c:578: dead_error_line: Execution cannot reach this expression "disk_idx < LowIndex" inside statement "if (!exact && result < 0 &&...". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_disk.c:578: dead_error_line: Execution cannot reach this expression "disk_idx < LowIndex" inside statement "if (!exact && result < 0 &&...". |
| + | jsafranek: false positive (ifdefs) |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_network.c:104: assignment: Assigning: "LowIndex" = "-1". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_network.c:104: assignment: Assigning: "LowIndex" = "-1". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_network.c:126: dead_error_line: Execution cannot reach this expression "net_idx < LowIndex" inside statement "if (!exact && result < 0 &&...". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_network.c:126: dead_error_line: Execution cannot reach this expression "net_idx < LowIndex" inside statement "if (!exact && result < 0 &&...". |
| + | jsafranek: false positive (ifdefs) |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_partition.c:120: assignment: Assigning: "LowPartIndex" = "-1". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_partition.c:120: assignment: Assigning: "LowPartIndex" = "-1". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_partition.c:183: dead_error_line: Execution cannot reach this statement "if (LowDiskIndex < HRP_Disk...". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_partition.c:183: dead_error_line: Execution cannot reach this statement "if (LowDiskIndex < HRP_Disk...". |
| + | jsafranek: false positive (ifdefs) |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_print.c:98: assignment: Assigning: "LowIndex" = "-1". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_print.c:98: assignment: Assigning: "LowIndex" = "-1". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_print.c:124: dead_error_line: Execution cannot reach this expression "print_idx < LowIndex" inside statement "if (!exact && result < 0 &&...". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_print.c:124: dead_error_line: Execution cannot reach this expression "print_idx < LowIndex" inside statement "if (!exact && result < 0 &&...". |
| + | jsafranek: false positive (ifdefs) |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_proc.c:97: assignment: Assigning: "LowIndex" = "-1". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_proc.c:97: assignment: Assigning: "LowIndex" = "-1". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_proc.c:123: dead_error_line: Execution cannot reach this expression "proc_idx < LowIndex" inside statement "if (!exact && result < 0 &&...". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hr_proc.c:123: dead_error_line: Execution cannot reach this expression "proc_idx < LowIndex" inside statement "if (!exact && result < 0 &&...". |
| + | jsafranek: false positive (ifdefs) |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hrh_filesys.c:152: assignment: Assigning: "LowIndex" = "-1". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hrh_filesys.c:152: assignment: Assigning: "LowIndex" = "-1". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hrh_filesys.c:175: dead_error_line: Execution cannot reach this expression "fsys_idx < LowIndex" inside statement "if (!exact && result < 0 &&...". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hrh_filesys.c:175: dead_error_line: Execution cannot reach this expression "fsys_idx < LowIndex" inside statement "if (!exact && result < 0 &&...". |
| + | jsafranek: false positive (ifdefs) |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hrh_storage.c:184: assignment: Assigning: "LowIndex" = "-1". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hrh_storage.c:184: assignment: Assigning: "LowIndex" = "-1". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hrh_storage.c:264: dead_error_line: Execution cannot reach this expression "storage_idx < LowIndex" inside statement "if (!exact && result < 0 &&...". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/host/hrh_storage.c:264: dead_error_line: Execution cannot reach this expression "storage_idx < LowIndex" inside statement "if (!exact && result < 0 &&...". |
| + | jsafranek: false positive (ifdefs) |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/inetCidrRouteTable/inetCidrRouteTable.c:2605: new_values: Noticing condition "0 != rc". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/inetCidrRouteTable/inetCidrRouteTable.c:2605: new_values: Noticing condition "0 != rc". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/inetCidrRouteTable/inetCidrRouteTable.c:2661: dead_error_line: Execution cannot reach this statement "return rc;". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/inetCidrRouteTable/inetCidrRouteTable.c:2661: dead_error_line: Execution cannot reach this statement "return rc;". |
| + | jsafranek: ignoring this 'bug', it's harmless check in generated code |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/inetCidrRouteTable/inetCidrRouteTable_interface.c:926: new_values: Noticing condition "0 != rc". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/inetCidrRouteTable/inetCidrRouteTable_interface.c:926: new_values: Noticing condition "0 != rc". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/inetCidrRouteTable/inetCidrRouteTable_interface.c:933: dead_error_line: Execution cannot reach this statement "return rc;". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/inetCidrRouteTable/inetCidrRouteTable_interface.c:933: dead_error_line: Execution cannot reach this statement "return rc;". |
| + | jsafranek: ignoring this 'bug', it's harmless check in generated code |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/ipCidrRouteTable/ipCidrRouteTable_interface.c:736: assignment: Assigning: "rc" = "0". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/ipCidrRouteTable/ipCidrRouteTable_interface.c:736: assignment: Assigning: "rc" = "0". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/ipCidrRouteTable/ipCidrRouteTable_interface.c:747: dead_error_line: Execution cannot reach this statement "return rc;". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/ipCidrRouteTable/ipCidrRouteTable_interface.c:747: dead_error_line: Execution cannot reach this statement "return rc;". |
| + | jsafranek: ignoring this 'bug', it's harmless check in generated code |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/ipCidrRouteTable/ipCidrRouteTable_interface.c:749: new_values: Noticing condition "0 != rc". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/ipCidrRouteTable/ipCidrRouteTable_interface.c:749: new_values: Noticing condition "0 != rc". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/ipCidrRouteTable/ipCidrRouteTable_interface.c:756: dead_error_line: Execution cannot reach this statement "return rc;". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/ipCidrRouteTable/ipCidrRouteTable_interface.c:756: dead_error_line: Execution cannot reach this statement "return rc;". |
| + | jsafranek: ignoring this 'bug', it's harmless check in generated code |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/ipCidrRouteTable/ipCidrRouteTable_interface.c:776: new_values: Noticing condition "0 != rc". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/ipCidrRouteTable/ipCidrRouteTable_interface.c:776: new_values: Noticing condition "0 != rc". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/ipCidrRouteTable/ipCidrRouteTable_interface.c:783: dead_error_line: Execution cannot reach this statement "return rc;". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-forward-mib/ipCidrRouteTable/ipCidrRouteTable_interface.c:783: dead_error_line: Execution cannot reach this statement "return rc;". |
| + | jsafranek: ignoring this 'bug', it's harmless check in generated code |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-mib/inetNetToMediaTable/inetNetToMediaTable.c:1753: new_values: Noticing condition "0 != rc". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-mib/inetNetToMediaTable/inetNetToMediaTable.c:1753: new_values: Noticing condition "0 != rc". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-mib/inetNetToMediaTable/inetNetToMediaTable.c:1811: dead_error_line: Execution cannot reach this statement "return rc;". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ip-mib/inetNetToMediaTable/inetNetToMediaTable.c:1811: dead_error_line: Execution cannot reach this statement "return rc;". |
| + | jsafranek: ignoring this 'bug', it's harmless check in generated code |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/route_write.c:430: new_values: Noticing condition "var_val_type != 64". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/route_write.c:430: new_values: Noticing condition "var_val_type != 64". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/route_write.c:438: dead_error_begin: Execution cannot reach this statement "snmp_log(3, "not IP address...". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/route_write.c:438: dead_error_begin: Execution cannot reach this statement "snmp_log(3, "not IP address...". |
| + | jsafranek: fixed in 5.4+, 15f2113 |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/route_write.c:505: new_values: Noticing condition "var_val_type != 64". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/route_write.c:505: new_values: Noticing condition "var_val_type != 64". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/route_write.c:513: dead_error_begin: Execution cannot reach this statement "snmp_log(3, "not right5");". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/route_write.c:513: dead_error_begin: Execution cannot reach this statement "snmp_log(3, "not right5");". |
| + | jsafranek: fixed in 5.4+, 985dff2 |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/vacm_conf.c:541: cannot_single: After this line (or expression), the value of "ap" cannot be 0. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/vacm_conf.c:541: cannot_single: After this line (or expression), the value of "ap" cannot be 0. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/vacm_conf.c:546: dead_error_begin: Execution cannot reach this statement "config_perror("failed to cr...". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/vacm_conf.c:546: dead_error_begin: Execution cannot reach this statement "config_perror("failed to cr...". |
| + | jsafranek: fixed in 5.4+, 2fd7818 |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:1576: assignment: Assigning: "len" = "1500UL". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:1576: assignment: Assigning: "len" = "1500UL". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:1621: dead_error_line: Execution cannot reach this statement "return NULL;". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:1621: dead_error_line: Execution cannot reach this statement "return NULL;". |
| + | jsafranek: TODO, "len = SMUXMAXPKTSIZE" is highly suspicious |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:1576: assignment: Assigning: "len" = "1500UL". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:1576: assignment: Assigning: "len" = "1500UL". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:1646: dead_error_line: Execution cannot reach this statement "return NULL;". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:1646: dead_error_line: Execution cannot reach this statement "return NULL;". |
| + | jsafranek: TODO, "len = SMUXMAXPKTSIZE" is highly suspicious |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/snmp-notification-mib/snmpNotifyFilterTable/snmpNotifyFilterTable.c:1865: new_values: Noticing condition "0 != rc". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/snmp-notification-mib/snmpNotifyFilterTable/snmpNotifyFilterTable.c:1865: new_values: Noticing condition "0 != rc". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/snmp-notification-mib/snmpNotifyFilterTable/snmpNotifyFilterTable.c:1927: dead_error_line: Execution cannot reach this statement "return rc;". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/snmp-notification-mib/snmpNotifyFilterTable/snmpNotifyFilterTable.c:1927: dead_error_line: Execution cannot reach this statement "return rc;". |
| + | jsafranek: ignoring this 'bug', it's harmless check in generated code |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/snmp-notification-mib/snmpNotifyFilterTable/snmpNotifyFilterTable_interface.c:810: new_values: Noticing condition "0 != rc". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/snmp-notification-mib/snmpNotifyFilterTable/snmpNotifyFilterTable_interface.c:810: new_values: Noticing condition "0 != rc". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/snmp-notification-mib/snmpNotifyFilterTable/snmpNotifyFilterTable_interface.c:818: dead_error_line: Execution cannot reach this statement "return rc;". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/snmp-notification-mib/snmpNotifyFilterTable/snmpNotifyFilterTable_interface.c:818: dead_error_line: Execution cannot reach this statement "return rc;". |
| + | jsafranek: ignoring this 'bug', it's harmless check in generated code |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/tcp-mib/data_access/tcpConn_linux.c:260: assignment: Assigning: "rc" = "0". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/tcp-mib/data_access/tcpConn_linux.c:260: assignment: Assigning: "rc" = "0". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/tcp-mib/data_access/tcpConn_linux.c:399: dead_error_line: Execution cannot reach this statement "return rc;". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/tcp-mib/data_access/tcpConn_linux.c:399: dead_error_line: Execution cannot reach this statement "return rc;". |
| + | jsafranek: fixed in 5.4+, a27aa19 |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/udp-mib/udpEndpointTable/udpEndpointTable_data_access.c:239: cannot_single: After this line (or expression), the value of "ep_c" cannot be 0. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/udp-mib/udpEndpointTable/udpEndpointTable_data_access.c:239: cannot_single: After this line (or expression), the value of "ep_c" cannot be 0. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/udp-mib/udpEndpointTable/udpEndpointTable_data_access.c:243: dead_error_begin: Execution cannot reach this statement "netsnmp_access_udp_endpoint...". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/udp-mib/udpEndpointTable/udpEndpointTable_data_access.c:243: dead_error_begin: Execution cannot reach this statement "netsnmp_access_udp_endpoint...". |
| + | jsafranek: fixed in 5.4+, c1526fc |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmpdf.c:367: new_values: Noticing condition "units". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmpdf.c:367: new_values: Noticing condition "units". |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmpdf.c:367: dead_error_line: Execution cannot reach this expression "convert_units(hssize - hsused, units, 1024UL)" inside statement "printf("%-18s %15lu %15lu %...". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmpdf.c:367: dead_error_line: Execution cannot reach this expression "convert_units(hssize - hsused, units, 1024UL)" inside statement "printf("%-18s %15lu %15lu %...". |
| + | jsafranek: TODO, 'units' variable is never set to anything useful |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmpdf.c:367: new_values: Noticing condition "units". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmpdf.c:367: new_values: Noticing condition "units". |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmpdf.c:367: dead_error_line: Execution cannot reach this expression "convert_units(hsused, units, 1024UL)" inside statement "printf("%-18s %15lu %15lu %...". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmpdf.c:367: dead_error_line: Execution cannot reach this expression "convert_units(hsused, units, 1024UL)" inside statement "printf("%-18s %15lu %15lu %...". |
| + | jsafranek: TODO, 'units' variable is never set to anything useful |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmpdf.c:367: new_values: Noticing condition "units". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmpdf.c:367: new_values: Noticing condition "units". |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmpdf.c:367: dead_error_line: Execution cannot reach this expression "convert_units(hssize, units, 1024UL)" inside statement "printf("%-18s %15lu %15lu %...". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmpdf.c:367: dead_error_line: Execution cannot reach this expression "convert_units(hssize, units, 1024UL)" inside statement "printf("%-18s %15lu %15lu %...". |
| + | jsafranek: TODO, 'units' variable is never set to anything useful |
| | | |
| Error: DEADCODE (CWE-561): | | Error: DEADCODE (CWE-561): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSTCPDomain.c:252: new_values: Noticing condition "rc <= 0". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSTCPDomain.c:252: new_values: Noticing condition "rc <= 0". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSTCPDomain.c:267: dead_error_line: Execution cannot reach this statement "if (SSL_get_error(tlsdata->...". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSTCPDomain.c:267: dead_error_line: Execution cannot reach this statement "if (SSL_get_error(tlsdata->...". |
| + | jsafranek: fixed in 5.6+, 04bf3e2 |
| </pre> | | </pre> |
| | | |
|
|
| Error: EVALUATION_ORDER: | | Error: EVALUATION_ORDER: |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpDTLSUDPDomain.c:429: write_write_order: In "tmStateRef = tmStateRef = (netsnmp_tmStateReference *)opaque", "tmStateRef" is written in "tmStateRef" (the assignment left-hand side) and written in "tmStateRef = (netsnmp_tmStateReference *)opaque" but the order in which the side effects take place is undefined because there is no intervening sequence point. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpDTLSUDPDomain.c:429: write_write_order: In "tmStateRef = tmStateRef = (netsnmp_tmStateReference *)opaque", "tmStateRef" is written in "tmStateRef" (the assignment left-hand side) and written in "tmStateRef = (netsnmp_tmStateReference *)opaque" but the order in which the side effects take place is undefined because there is no intervening sequence point. |
| + | magfr: Fixed in 5.7+ (230df14f94c3736ff34379a4e281eea353b47f80) |
| </pre> | | </pre> |
| | | |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/agent_registry.c:1583: var_compare_op: Comparing "sub" to null implies that "sub" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/agent_registry.c:1583: var_compare_op: Comparing "sub" to null implies that "sub" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/agent_registry.c:1597: var_deref_op: Dereferencing null variable "sub". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/agent_registry.c:1597: var_deref_op: Dereferencing null variable "sub". |
| + | jsafranek: fixed in 5.4+, 355c5ab |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_client.c:804: assign_zero: Assigning: "vars->val.string" = 0. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_client.c:804: assign_zero: Assigning: "vars->val.string" = 0. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_client.c:816: var_deref_op: Dereferencing null variable "vars->val.string". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_client.c:816: var_deref_op: Dereferencing null variable "vars->val.string". |
| + | jsafranek: fixed in 5.4+, 6feed62 |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:5159: assign_zero: Assigning: "orp" = 0. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:5159: assign_zero: Assigning: "orp" = 0. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:5378: var_deref_op: Dereferencing null variable "orp". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:5378: var_deref_op: Dereferencing null variable "orp". |
| + | jsafranek: false positive? If orp is NULL, isp->requests must equal to rp (it's the first iteration of the for loop), i.e. the code won't reach here. |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:5354: var_compare_op: Comparing "sp->contextEngineID" to null implies that "sp->contextEngineID" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:5354: var_compare_op: Comparing "sp->contextEngineID" to null implies that "sp->contextEngineID" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:5360: var_deref_model: Passing null variable "sp->contextEngineID" to function "memcpy", which dereferences it. (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:5360: var_deref_model: Passing null variable "sp->contextEngineID" to function "memcpy", which dereferences it. (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) |
| + | jsafranek: fixed in 5.4+, b5df1ee TODO: proper cleanup |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:5341: var_compare_op: Comparing "sp->securityEngineID" to null implies that "sp->securityEngineID" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:5341: var_compare_op: Comparing "sp->securityEngineID" to null implies that "sp->securityEngineID" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:5347: var_deref_model: Passing null variable "sp->securityEngineID" to function "memcpy", which dereferences it. (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:5347: var_deref_model: Passing null variable "sp->securityEngineID" to function "memcpy", which dereferences it. (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) |
| + | jsafranek: fixed in 5.4+, b5df1ee TODO: proper cleanup |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:6267: assign_zero: Assigning: "orp" = 0. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:6267: assign_zero: Assigning: "orp" = 0. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:6328: var_deref_op: Dereferencing null variable "orp". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:6328: var_deref_op: Dereferencing null variable "orp". |
| + | jsafranek: false positive? If orp is NULL, isp->requests must equal to rp (it's the first iteration of the for loop), i.e. the code won't reach here. |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:517: deref_parm_in_call: Function "strcasecmp" dereferences parameter "token". (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:517: deref_parm_in_call: Function "strcasecmp" dereferences parameter "token". (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:618: var_deref_model: Passing null variable "cptr" to function "strlen", which dereferences it. (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:618: var_deref_model: Passing null variable "cptr" to function "strlen", which dereferences it. (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) |
| + | jsafranek: fixed in 5.4+, f33d33615 |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/agent_trap.c:769: var_compare_op: Comparing "template_v2pdu" to null implies that "template_v2pdu" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/agent_trap.c:769: var_compare_op: Comparing "template_v2pdu" to null implies that "template_v2pdu" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/agent_trap.c:808: var_deref_op: Dereferencing null variable "template_v2pdu". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/agent_trap.c:808: var_deref_op: Dereferencing null variable "template_v2pdu". |
| + | jsafranek: fixed in 5.5+, 185272d |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:1841: var_compare_op: Comparing "np" to null implies that "np" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:1841: var_compare_op: Comparing "np" to null implies that "np" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:1845: var_deref_op: Dereferencing null variable "np". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:1845: var_deref_op: Dereferencing null variable "np". |
| + | jsafranek: false positive, if np == NULL, orphan_nodes must be NULL too |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/extend.c:393: var_compare_op: Comparing "ereg" to null implies that "ereg" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/extend.c:393: var_compare_op: Comparing "ereg" to null implies that "ereg" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/extend.c:411: var_deref_op: Dereferencing null variable "ereg". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/extend.c:411: var_deref_op: Dereferencing null variable "ereg". |
| + | jsafranek: fixed in 5.4+, 410b71d |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmp_agent.c:2313: assign_zero: Assigning: "asp->bulkcache" = 0. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmp_agent.c:2313: assign_zero: Assigning: "asp->bulkcache" = 0. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmp_agent.c:2384: var_deref_op: Dereferencing null variable "asp->bulkcache". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmp_agent.c:2384: var_deref_op: Dereferencing null variable "asp->bulkcache". |
| + | jsafranek: false positive??? TODO: check |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteEventConf.c:296: var_compare_op: Comparing "cp" to null implies that "cp" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteEventConf.c:296: var_compare_op: Comparing "cp" to null implies that "cp" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteEventConf.c:299: var_deref_model: Passing null variable "cp" to function "strtol", which dereferences it. (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteEventConf.c:299: var_deref_model: Passing null variable "cp" to function "strtol", which dereferences it. (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) |
| + | jsafranek: fixed in 5.4+, fa6a912 |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:692: alias_transfer: Assigning null: "vp2" = "dvar". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:692: alias_transfer: Assigning null: "vp2" = "dvar". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:701: var_deref_op: Dereferencing null variable "vp2". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:701: var_deref_op: Dereferencing null variable "vp2". |
| + | jsafranek: not able to guess, TODO |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:721: var_deref_op: Dereferencing null variable "vp2_prev". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:721: var_deref_op: Dereferencing null variable "vp2_prev". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:736: var_deref_op: Dereferencing null variable "vp2_prev". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:736: var_deref_op: Dereferencing null variable "vp2_prev". |
| + | jsafranek: not able to guess, TODO |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:793: var_deref_op: Dereferencing null variable "vp2". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:793: var_deref_op: Dereferencing null variable "vp2". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:802: var_deref_op: Dereferencing null variable "vp2". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:802: var_deref_op: Dereferencing null variable "vp2". |
| + | jsafranek: not able to guess, TODO |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:933: var_deref_op: Dereferencing null variable "vp2". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:933: var_deref_op: Dereferencing null variable "vp2". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:942: var_deref_op: Dereferencing null variable "vp2". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:942: var_deref_op: Dereferencing null variable "vp2". |
| + | jsafranek: not able to guess, TODO |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/if-mib/ifTable/ifTable.c:463: var_compare_op: Comparing "tmp_descr" to null implies that "tmp_descr" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/if-mib/ifTable/ifTable.c:463: var_compare_op: Comparing "tmp_descr" to null implies that "tmp_descr" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/if-mib/ifTable/ifTable.c:489: var_deref_model: Passing null variable "tmp_descr" to function "memcpy", which dereferences it. (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/if-mib/ifTable/ifTable.c:489: var_deref_model: Passing null variable "tmp_descr" to function "memcpy", which dereferences it. (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) |
| + | jsafranek: false positive, ifDescr_val_ptr_len_ptr is 0 when tmp_descr is NULL |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:1334: assign_zero: Assigning: "bestptr" = 0. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:1334: assign_zero: Assigning: "bestptr" = 0. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:1343: var_deref_op: Dereferencing null variable "bestptr". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:1343: var_deref_op: Dereferencing null variable "bestptr". |
| + | jsafranek: fixed in 5.4+, 5b72a40 |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:366: var_compare_op: Comparing "rptr" to null implies that "rptr" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:366: var_compare_op: Comparing "rptr" to null implies that "rptr" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:549: var_deref_op: Dereferencing null variable "rptr". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:549: var_deref_op: Dereferencing null variable "rptr". |
| + | jsafranek: fixed in 5.4+, 41cde68 |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/keytools.c:593: var_compare_op: Comparing "newkey" to null implies that "newkey" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/keytools.c:593: var_compare_op: Comparing "newkey" to null implies that "newkey" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/keytools.c:641: var_deref_model: Passing null variable "newkey" to function "memset", which dereferences it. (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/keytools.c:641: var_deref_model: Passing null variable "newkey" to function "memset", which dereferences it. (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) |
| + | jsafranek: fixed in 5.4+, eed6f5f |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/disk_hw.c:316: var_compare_op: Comparing "entry" to null implies that "entry" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/disk_hw.c:316: var_compare_op: Comparing "entry" to null implies that "entry" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/disk_hw.c:317: var_deref_op: Dereferencing null variable "entry". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/disk_hw.c:317: var_deref_op: Dereferencing null variable "entry". |
| + | jsafranek: TODO, the function is messed up. Fixing this error just enters endless loop ('entry' will be the same) |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmp_agent.c:885: assign_zero: Assigning: "addr_string" = 0. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmp_agent.c:885: assign_zero: Assigning: "addr_string" = 0. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmp_agent.c:921: var_deref_model: Passing null variable "addr_string" to function "strstr", which dereferences it. (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmp_agent.c:921: var_deref_model: Passing null variable "addr_string" to function "strstr", which dereferences it. (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) |
| + | jsafranek: fixed in 5.4+, 5e95ca6 |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/large_fd_set.c:132: var_compare_op: Comparing "exceptfds" to null implies that "exceptfds" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/large_fd_set.c:132: var_compare_op: Comparing "exceptfds" to null implies that "exceptfds" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/large_fd_set.c:138: var_deref_op: Dereferencing null variable "exceptfds". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/large_fd_set.c:138: var_deref_op: Dereferencing null variable "exceptfds". |
| + | jsafranek: fixed in 5.5+, ba5d529 |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/large_fd_set.c:128: var_compare_op: Comparing "readfds" to null implies that "readfds" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/large_fd_set.c:128: var_compare_op: Comparing "readfds" to null implies that "readfds" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/large_fd_set.c:138: var_deref_op: Dereferencing null variable "readfds". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/large_fd_set.c:138: var_deref_op: Dereferencing null variable "readfds". |
| + | jsafranek: fixed in 5.5+, ba5d529 |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/large_fd_set.c:130: var_compare_op: Comparing "writefds" to null implies that "writefds" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/large_fd_set.c:130: var_compare_op: Comparing "writefds" to null implies that "writefds" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/large_fd_set.c:138: var_deref_op: Dereferencing null variable "writefds". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/large_fd_set.c:138: var_deref_op: Dereferencing null variable "writefds". |
| + | jsafranek: fixed in 5.5+, ba5d529 |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:3038: deref_var: Dereferencing "cp", which equals a pointer parameter. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:3038: deref_var: Dereferencing "cp", which equals a pointer parameter. |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:329: var_compare_op: Comparing "current_name" to null implies that "current_name" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:329: var_compare_op: Comparing "current_name" to null implies that "current_name" might be null. |
| + | jsafranek: false positive, argc and NULL argument match each other |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/perl/SNMP/SNMP.xs:4007: var_compare_op: Comparing "context" to null implies that "context" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/perl/SNMP/SNMP.xs:4007: var_compare_op: Comparing "context" to null implies that "context" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/perl/SNMP/SNMP.xs:4245: var_deref_op: Dereferencing null variable "context". | | /builddir/build/BUILD/net-snmp-5.7.1/perl/SNMP/SNMP.xs:4245: var_deref_op: Dereferencing null variable "context". |
| + | jsafranek: fixed in 5.4+, f88054a |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:6264: var_assign_parm: Assigning: "slp" = "sessp". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:6264: var_assign_parm: Assigning: "slp" = "sessp". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:6273: deref_var: Dereferencing "slp", which equals a pointer parameter. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:6273: deref_var: Dereferencing "slp", which equals a pointer parameter. |
| + | jsafranek; TODO: what if ss is NULL??? |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/python/netsnmp/client_intf.c:799: var_deref_model: Passing null variable "oid_arr_len" to function "__concat_oid_str", which dereferences it. | | /builddir/build/BUILD/net-snmp-5.7.1/python/netsnmp/client_intf.c:799: var_deref_model: Passing null variable "oid_arr_len" to function "__concat_oid_str", which dereferences it. |
| /builddir/build/BUILD/net-snmp-5.7.1/python/netsnmp/client_intf.c:860: deref_parm: Directly dereferencing parameter "doid_arr_len". | | /builddir/build/BUILD/net-snmp-5.7.1/python/netsnmp/client_intf.c:860: deref_parm: Directly dereferencing parameter "doid_arr_len". |
| + | jsafranek: fixed in 5.4+, da2d6a70 |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/python/netsnmp/client_intf.c:2337: assign_zero: Assigning: "val_tuple" = 0. | | /builddir/build/BUILD/net-snmp-5.7.1/python/netsnmp/client_intf.c:2337: assign_zero: Assigning: "val_tuple" = 0. |
| /builddir/build/BUILD/net-snmp-5.7.1/python/netsnmp/client_intf.c:2559: var_deref_op: Dereferencing null variable "val_tuple". | | /builddir/build/BUILD/net-snmp-5.7.1/python/netsnmp/client_intf.c:2559: var_deref_op: Dereferencing null variable "val_tuple". |
| + | jsafranek: fixed in 5.4+, da2d6a70 |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/python/netsnmp/client_intf.c:2075: var_compare_op: Comparing "varlist_iter" to null implies that "varlist_iter" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/python/netsnmp/client_intf.c:2075: var_compare_op: Comparing "varlist_iter" to null implies that "varlist_iter" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/python/netsnmp/client_intf.c:2105: var_deref_op: Dereferencing null variable "varlist_iter". | | /builddir/build/BUILD/net-snmp-5.7.1/python/netsnmp/client_intf.c:2105: var_deref_op: Dereferencing null variable "varlist_iter". |
| + | jsafranek: fixed in 5.4+, da2d6a70 |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:802: var_compare_op: Comparing "fp" to null implies that "fp" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:802: var_compare_op: Comparing "fp" to null implies that "fp" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:804: var_deref_model: Passing null variable "fp" to function "fclose", which dereferences it. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:804: var_deref_model: Passing null variable "fp" to function "fclose", which dereferences it. |
| + | jsafranek: fixed in 5.6+, fc19b7f |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:1177: var_compare_op: Comparing "key" to null implies that "key" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:1177: var_compare_op: Comparing "key" to null implies that "key" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:1182: var_deref_op: Dereferencing null variable "key". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:1182: var_deref_op: Dereferencing null variable "key". |
| + | jsafranek: already fixed in different issue |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpDTLSUDPDomain.c:1034: var_compare_op: Comparing "olength" to null implies that "olength" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpDTLSUDPDomain.c:1034: var_compare_op: Comparing "olength" to null implies that "olength" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpDTLSUDPDomain.c:1063: var_deref_op: Dereferencing null variable "olength". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpDTLSUDPDomain.c:1063: var_deref_op: Dereferencing null variable "olength". |
| + | jsafranek: fixed in 5.7+, 59884bb |
| | | |
| Error: FORWARD_NULL (CWE-476): | | Error: FORWARD_NULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSTCPDomain.c:151: var_compare_op: Comparing "t" to null implies that "t" might be null. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSTCPDomain.c:151: var_compare_op: Comparing "t" to null implies that "t" might be null. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSTCPDomain.c:154: var_deref_op: Dereferencing null variable "t". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSTCPDomain.c:154: var_deref_op: Dereferencing null variable "t". |
| + | jsafranek: fixed in 5.6+, 7c4d459 |
| </pre> | | </pre> |
| | | |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:4741: unterminated_case: This case (value 45) is not terminated by a 'break' statement. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:4741: unterminated_case: This case (value 45) is not terminated by a 'break' statement. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:4773: fallthrough: The above case falls through to this one. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:4773: fallthrough: The above case falls through to this one. |
| + | jsafranek: commented in 5.4+, 6d31c82 |
| | | |
| Error: MISSING_BREAK (CWE-484): | | Error: MISSING_BREAK (CWE-484): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_dataset.c:1109: unterminated_case: This case (value 20) is not terminated by a 'break' statement. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_dataset.c:1109: unterminated_case: This case (value 20) is not terminated by a 'break' statement. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_dataset.c:1111: fallthrough: The above case falls through to this one. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_dataset.c:1111: fallthrough: The above case falls through to this one. |
| + | jsafranek: commented in 5.4+, 18c126a |
| | | |
| Error: MISSING_BREAK (CWE-484): | | Error: MISSING_BREAK (CWE-484): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_dataset.c:1106: unterminated_case: This case (value 48) is not terminated by a 'break' statement. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_dataset.c:1106: unterminated_case: This case (value 48) is not terminated by a 'break' statement. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_dataset.c:1108: fallthrough: The above case falls through to this one. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_dataset.c:1108: fallthrough: The above case falls through to this one. |
| + | jsafranek: commented in 5.4+, 18c126a |
| | | |
| Error: MISSING_BREAK (CWE-484): | | Error: MISSING_BREAK (CWE-484): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/route_write.c:501: unterminated_case: This case (value 7) is not terminated by a 'break' statement. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/route_write.c:501: unterminated_case: This case (value 7) is not terminated by a 'break' statement. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/route_write.c:524: fallthrough: The above case falls through to this one. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/route_write.c:524: fallthrough: The above case falls through to this one. |
| + | jsafranek: fixed in 3130e24 |
| | | |
| Error: MISSING_BREAK (CWE-484): | | Error: MISSING_BREAK (CWE-484): |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:171: unterminated_case: This case (value 104) is not terminated by a 'break' statement. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:171: unterminated_case: This case (value 104) is not terminated by a 'break' statement. |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:173: fallthrough: The above case falls through to this one. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:173: fallthrough: The above case falls through to this one. |
| + | jsafranek: fixed in 5.4+, fb6f80c |
| | | |
| Error: MISSING_BREAK (CWE-484): | | Error: MISSING_BREAK (CWE-484): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmpusm.c:3151: unterminated_case: This case (value 2) is not terminated by a 'break' statement. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmpusm.c:3151: unterminated_case: This case (value 2) is not terminated by a 'break' statement. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmpusm.c:3153: fallthrough: The above case falls through to this one. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmpusm.c:3153: fallthrough: The above case falls through to this one. |
| + | jsafranek: commented in 5.4+, d68dcae |
| | | |
| Error: MISSING_BREAK (CWE-484): | | Error: MISSING_BREAK (CWE-484): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmpusm.c:2719: unterminated_case: This case (value -46) is not terminated by a 'break' statement. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmpusm.c:2719: unterminated_case: This case (value -46) is not terminated by a 'break' statement. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmpusm.c:2730: fallthrough: The above case falls through to this one. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmpusm.c:2730: fallthrough: The above case falls through to this one. |
| + | jsafranek: fixed in 5.7+, 6665d5f |
| | | |
| Error: MISSING_BREAK (CWE-484): | | Error: MISSING_BREAK (CWE-484): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSBaseDomain.c:1083: fallthrough: The above case falls through to this one. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSBaseDomain.c:1083: fallthrough: The above case falls through to this one. |
| </pre> | | </pre> |
| + | jsafranek: fixed in 5.6+, a6648c5 |
| | | |
| ==NEGATIVE_RETURNS== | | ==NEGATIVE_RETURNS== |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/cpu/cpu_linux.c:234: var_assign: Assigning: signed variable "vmstatfd" = "open". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/cpu/cpu_linux.c:234: var_assign: Assigning: signed variable "vmstatfd" = "open". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/cpu/cpu_linux.c:230: negative_returns: "vmstatfd" is passed to a parameter that cannot be negative. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/cpu/cpu_linux.c:230: negative_returns: "vmstatfd" is passed to a parameter that cannot be negative. |
| + | jsafranek: fixed in 5.4+, 92075f5 |
| | | |
| Error: NEGATIVE_RETURNS (CWE-687): | | Error: NEGATIVE_RETURNS (CWE-687): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/cpu/cpu_linux.c:123: var_assign: Assigning: signed variable "statfd" = "open". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/cpu/cpu_linux.c:123: var_assign: Assigning: signed variable "statfd" = "open". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/cpu/cpu_linux.c:118: negative_returns: "statfd" is passed to a parameter that cannot be negative. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/cpu/cpu_linux.c:118: negative_returns: "statfd" is passed to a parameter that cannot be negative. |
| + | jsafranek: fixed in 5.4+, 92075f5 |
| | | |
| Error: NEGATIVE_RETURNS (CWE-687): | | Error: NEGATIVE_RETURNS (CWE-687): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/if-mib/data_access/interface_linux.c:1044: var_assign: Assigning: signed variable "fd" = "socket". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/if-mib/data_access/interface_linux.c:1044: var_assign: Assigning: signed variable "fd" = "socket". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/if-mib/data_access/interface_linux.c:1053: negative_returns: "fd" is passed to a parameter that cannot be negative. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/if-mib/data_access/interface_linux.c:1053: negative_returns: "fd" is passed to a parameter that cannot be negative. |
| + | jsafranek: fixed in 5.5+, b3bc54b |
| | | |
| Error: NEGATIVE_RETURNS (CWE-687): | | Error: NEGATIVE_RETURNS (CWE-687): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/nsVacmAccessTable.c:178: var_assign: Assigning: signed variable "viewIdx" = "se_find_value_in_slist". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/nsVacmAccessTable.c:178: var_assign: Assigning: signed variable "viewIdx" = "se_find_value_in_slist". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/nsVacmAccessTable.c:190: negative_returns: Using variable "viewIdx" as an index to array "entry->views". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/nsVacmAccessTable.c:190: negative_returns: Using variable "viewIdx" as an index to array "entry->views". |
| + | jsafranek: fixed in 5.4+, 670d6fc |
| | | |
| Error: NEGATIVE_RETURNS (CWE-687): | | Error: NEGATIVE_RETURNS (CWE-687): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/nsVacmAccessTable.c:333: negative_returns: Using variable "viewIdx" as an index to array "entry->views". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/nsVacmAccessTable.c:333: negative_returns: Using variable "viewIdx" as an index to array "entry->views". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/nsVacmAccessTable.c:343: negative_returns: Using variable "viewIdx" as an index to array "entry->views". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/nsVacmAccessTable.c:343: negative_returns: Using variable "viewIdx" as an index to array "entry->views". |
| + | jsafranek: fixed in 5.4+, 670d6fc |
| | | |
| Error: NEGATIVE_RETURNS (CWE-687): | | Error: NEGATIVE_RETURNS (CWE-687): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_debug.c:372: neg_sink_parm_call: Passing "len" to "sprint_realloc_hexstring", which cannot accept a negative. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_debug.c:372: neg_sink_parm_call: Passing "len" to "sprint_realloc_hexstring", which cannot accept a negative. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: parm_loop_bound: Using unsigned parameter "len" in a loop exit test. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: parm_loop_bound: Using unsigned parameter "len" in a loop exit test. |
| + | jsafranek: already fixed |
| | | |
| Error: NEGATIVE_RETURNS (CWE-687): | | Error: NEGATIVE_RETURNS (CWE-687): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:1056: var_assign: Assigning: signed variable "uid" = "netsnmp_ds_get_int". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:1056: var_assign: Assigning: signed variable "uid" = "netsnmp_ds_get_int". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:1076: negative_returns: "uid" is passed to a parameter that cannot be negative. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:1076: negative_returns: "uid" is passed to a parameter that cannot be negative. |
| + | jsafranek: fixed in 5.4+, 2b6c119 |
| | | |
| Error: NEGATIVE_RETURNS (CWE-687): | | Error: NEGATIVE_RETURNS (CWE-687): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:1039: var_assign: Assigning: signed variable "gid" = "netsnmp_ds_get_int". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:1039: var_assign: Assigning: signed variable "gid" = "netsnmp_ds_get_int". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:1042: negative_returns: "gid" is passed to a parameter that cannot be negative. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:1042: negative_returns: "gid" is passed to a parameter that cannot be negative. |
| + | jsafranek: fixed in 5.4+, 2b6c119 |
| </pre> | | </pre> |
| | | |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:1370: var_assigned: Assigning: "sptr" = null return value from "find_sec_mod". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:1370: var_assigned: Assigning: "sptr" = null return value from "find_sec_mod". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:1393: dereference: Dereferencing a null pointer "sptr". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:1393: dereference: Dereferencing a null pointer "sptr". |
| + | jsafranek: fixed in 5.7+, b1eaaf3 |
| | | |
| Error: NULL_RETURNS (CWE-476): | | Error: NULL_RETURNS (CWE-476): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:895: var_assigned: Assigning: "cp" = null return value from "strrchr". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:895: var_assigned: Assigning: "cp" = null return value from "strrchr". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:896: dereference: Incrementing a pointer which might be null: "cp". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:896: dereference: Incrementing a pointer which might be null: "cp". |
| + | jsafranek: fixed in 5.6+, 089bcb3 |
| | | |
| Error: NULL_RETURNS (CWE-476): | | Error: NULL_RETURNS (CWE-476): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:2802: var_assigned: Assigning: "fp" = null return value from "fopen". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:2802: var_assigned: Assigning: "fp" = null return value from "fopen". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:2803: dereference: Dereferencing a pointer that might be null "fp" when calling "fgets". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:2803: dereference: Dereferencing a pointer that might be null "fp" when calling "fgets". |
| + | jsafranek: fixed in 5.5+, 299ea9a |
| | | |
| Error: NULL_RETURNS (CWE-476): | | Error: NULL_RETURNS (CWE-476): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/nsDebug.c:424: var_assigned: Assigning: "debug_entry" = null return value from "netsnmp_extract_iterator_context". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/nsDebug.c:424: var_assigned: Assigning: "debug_entry" = null return value from "netsnmp_extract_iterator_context". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/nsDebug.c:426: dereference: Dereferencing a null pointer "debug_entry". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/nsDebug.c:426: dereference: Dereferencing a null pointer "debug_entry". |
| + | jsafranek: fixed in 5.4+, 5d1d0a7 |
| | | |
| Error: NULL_RETURNS (CWE-476): | | Error: NULL_RETURNS (CWE-476): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/nsLogging.c:353: var_assigned: Assigning: "logh" = null return value from "netsnmp_extract_iterator_context". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/nsLogging.c:353: var_assigned: Assigning: "logh" = null return value from "netsnmp_extract_iterator_context". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/nsLogging.c:366: dereference: Dereferencing a null pointer "logh". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/agent/nsLogging.c:366: dereference: Dereferencing a null pointer "logh". |
| + | jsafranek: fixed in 5.4+, 5d1d0a7 |
| | | |
| Error: NULL_RETURNS (CWE-476): | | Error: NULL_RETURNS (CWE-476): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyTable.c:322: var_assigned: Assigning: "t" = null return value from "snmp_sess_transport". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyTable.c:322: var_assigned: Assigning: "t" = null return value from "snmp_sess_transport". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyTable.c:323: dereference: Dereferencing a null pointer "t". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyTable.c:323: dereference: Dereferencing a null pointer "t". |
| + | jsafranek: fixed in 5.4+, aee4e89 |
| </pre> | | </pre> |
| | | |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:1076: strlen_assign: Setting variable "session->community_len" to the return value of strlen called with argument "cp". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:1076: strlen_assign: Setting variable "session->community_len" to the return value of strlen called with argument "cp". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:1077: alloc_strlen: Allocating insufficient memory for the terminating null of the string. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:1077: alloc_strlen: Allocating insufficient memory for the terminating null of the string. |
| + | jsafranek: false positive, community is without '\0' at the end |
| | | |
| Error: OVERRUN_DYNAMIC (CWE-125): | | Error: OVERRUN_DYNAMIC (CWE-125): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:5677: alias: Assigning: "pptr" = "isp->packet". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:5677: alias: Assigning: "pptr" = "isp->packet". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:5811: overrun-dbuffer-arg: Overrunning dynamic array "isp->packet" of size 65536 bytes by passing it to a function which indexes it with argument "isp->packet_len" at position 2147483645. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:5811: overrun-dbuffer-arg: Overrunning dynamic array "isp->packet" of size 65536 bytes by passing it to a function which indexes it with argument "isp->packet_len" at position 2147483645. |
| + | jsafranek: looks like a false positive, isp->packet_len cannot grow over 65536 |
| | | |
| Error: OVERRUN_DYNAMIC (CWE-125): | | Error: OVERRUN_DYNAMIC (CWE-125): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/if-mib/ifXTable/ifXTable.c:425: strlen_assign: Setting variable "tmp_len" to a value computed using function strlen. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/if-mib/ifXTable/ifXTable.c:425: strlen_assign: Setting variable "tmp_len" to a value computed using function strlen. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/if-mib/ifXTable/ifXTable.c:431: alloc_strlen: Allocating insufficient memory for the terminating null of the string. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/if-mib/ifXTable/ifXTable.c:431: alloc_strlen: Allocating insufficient memory for the terminating null of the string. |
| + | jsafranek: false positive |
| | | |
| Error: OVERRUN_DYNAMIC (CWE-125): | | Error: OVERRUN_DYNAMIC (CWE-125): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:440: alias: Assigning: "op" = "s". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:440: alias: Assigning: "op" = "s". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:456: overrun-local: Overrunning dynamic array "op" of size 0 bytes at position 0. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:456: overrun-local: Overrunning dynamic array "op" of size 0 bytes at position 0. |
| + | jsafranek: false positive ??? |
| | | |
| Error: OVERRUN_DYNAMIC (CWE-125): | | Error: OVERRUN_DYNAMIC (CWE-125): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptable.c:535: var_assign: Assigning: "column" = "malloc(sizeof (*column) /*32*/)". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptable.c:535: var_assign: Assigning: "column" = "malloc(sizeof (*column) /*32*/)". |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptable.c:567: overrun-local: Overrunning dynamic array "column" of size 32 bytes at position 32 with index variable "field". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptable.c:567: overrun-local: Overrunning dynamic array "column" of size 32 bytes at position 32 with index variable "field". |
| + | jsafranek: false positive, fields == 1 |
| | | |
| Error: OVERRUN_DYNAMIC (CWE-125): | | Error: OVERRUN_DYNAMIC (CWE-125): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUnixDomain.c:361: alloc_strlen: Allocating insufficient memory for the terminating null of the string. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUnixDomain.c:361: alloc_strlen: Allocating insufficient memory for the terminating null of the string. |
| + | jsafranek: false positive |
| | | |
| Error: OVERRUN_DYNAMIC (CWE-125): | | Error: OVERRUN_DYNAMIC (CWE-125): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUnixDomain.c:423: alloc_strlen: Allocating insufficient memory for the terminating null of the string. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUnixDomain.c:423: alloc_strlen: Allocating insufficient memory for the terminating null of the string. |
| + | jsafranek: false positive |
| </pre> | | </pre> |
| | | |
|
|
| Error: OVERRUN_STATIC (CWE-125): | | Error: OVERRUN_STATIC (CWE-125): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2699: overrun-string: Static array "defbuf" of size 512 is overrun if the index used is too large. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2699: overrun-string: Static array "defbuf" of size 512 is overrun if the index used is too large. |
| + | jsafranek: false positive |
| | | |
| Error: OVERRUN_STATIC (CWE-125): | | Error: OVERRUN_STATIC (CWE-125): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2700: overrun-string: Static array "defbuf" of size 512 is overrun if the index used is too large. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2700: overrun-string: Static array "defbuf" of size 512 is overrun if the index used is too large. |
| + | jsafranek: false positive |
| | | |
| Error: OVERRUN_STATIC (CWE-125): | | Error: OVERRUN_STATIC (CWE-125): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2710: overrun-string: Static array "defbuf" of size 512 is overrun if the index used is too large. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2710: overrun-string: Static array "defbuf" of size 512 is overrun if the index used is too large. |
| + | jsafranek: false positive |
| | | |
| Error: OVERRUN_STATIC (CWE-125): | | Error: OVERRUN_STATIC (CWE-125): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2711: overrun-string: Static array "defbuf" of size 512 is overrun if the index used is too large. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2711: overrun-string: Static array "defbuf" of size 512 is overrun if the index used is too large. |
| + | jsafranek: false positive |
| | | |
| Error: OVERRUN_STATIC (CWE-125): | | Error: OVERRUN_STATIC (CWE-125): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2717: overrun-string: Static array "defbuf" of size 512 is overrun if the index used is too large. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2717: overrun-string: Static array "defbuf" of size 512 is overrun if the index used is too large. |
| + | jsafranek: false positive |
| | | |
| Error: OVERRUN_STATIC (CWE-125): | | Error: OVERRUN_STATIC (CWE-125): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/schedule/schedTable.c:463: overrun-buffer-arg: Overrunning static array "entry->schedContextName" of size 32 bytes by passing it to a function which indexes it with argument "33UL" at byte position 32. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/schedule/schedTable.c:463: overrun-buffer-arg: Overrunning static array "entry->schedContextName" of size 32 bytes by passing it to a function which indexes it with argument "33UL" at byte position 32. |
| + | jsafranek: fixed in 5,4+, b3c4982 |
| | | |
| Error: OVERRUN_STATIC (CWE-125): | | Error: OVERRUN_STATIC (CWE-125): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/target/snmpTargetAddrEntry.c:729: overrun-string: Static array "line" of size 1024 is overrun if the index used is too large. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/target/snmpTargetAddrEntry.c:729: overrun-string: Static array "line" of size 1024 is overrun if the index used is too large. |
| + | jsafranek: false positive |
| | | |
| Error: OVERRUN_STATIC (CWE-125): | | Error: OVERRUN_STATIC (CWE-125): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd_sql.c:445: overrun-local: Overrunning static array of size 8 bytes at byte position 8 by indexing pointer "not_argv" with index variable "i". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd_sql.c:445: overrun-local: Overrunning static array of size 8 bytes at byte position 8 by indexing pointer "not_argv" with index variable "i". |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd_sql.c:445: overrun-local: Note: These bugs are often difficult to see at first glance. Coverity recommends a close inspection of the events leading to this overrun. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd_sql.c:445: overrun-local: Note: These bugs are often difficult to see at first glance. Coverity recommends a close inspection of the events leading to this overrun. |
| + | jsafranek: false positive |
| | | |
| Error: OVERRUN_STATIC (CWE-125): | | Error: OVERRUN_STATIC (CWE-125): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_enum.c:178: assignment: Assigning: "len" = "sizeof (line) /*2048*/". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_enum.c:178: assignment: Assigning: "len" = "sizeof (line) /*2048*/". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_enum.c:181: overrun-buffer-arg: Overrunning static array "line" of size 2048 bytes by passing it to a function which indexes it with argument "len" at byte position 2048. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_enum.c:181: overrun-buffer-arg: Overrunning static array "line" of size 2048 bytes by passing it to a function which indexes it with argument "len" at byte position 2048. |
| + | jsafranek: fixed in 5.4+, b3c4982 |
| | | |
| Error: OVERRUN_STATIC (CWE-125): | | Error: OVERRUN_STATIC (CWE-125): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTCPIPv6Domain.c:372: overrun-buffer-val: Overrunning struct type struct sockaddr_in6 of size 28 bytes by passing it as an argument to a function which indexes it at byte position 59. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTCPIPv6Domain.c:372: overrun-buffer-val: Overrunning struct type struct sockaddr_in6 of size 28 bytes by passing it as an argument to a function which indexes it at byte position 59. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTCPIPv6Domain.c:177: access_dbuff_const: Calling "memcpy" indexes array "addr" with index "sizeof (netsnmp_indexed_addr_pair) /*60*/" at byte position 59. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTCPIPv6Domain.c:177: access_dbuff_const: Calling "memcpy" indexes array "addr" with index "sizeof (netsnmp_indexed_addr_pair) /*60*/" at byte position 59. |
| + | jsafranek: fixed in 5.7+, bee4d79 |
| | | |
| Error: OVERRUN_STATIC (CWE-125): | | Error: OVERRUN_STATIC (CWE-125): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTCPIPv6Domain.c:346: overrun-buffer-val: Overrunning struct type struct sockaddr_in6 of size 28 bytes by passing it as an argument to a function which indexes it at byte position 59. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTCPIPv6Domain.c:346: overrun-buffer-val: Overrunning struct type struct sockaddr_in6 of size 28 bytes by passing it as an argument to a function which indexes it at byte position 59. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTCPIPv6Domain.c:177: access_dbuff_const: Calling "memcpy" indexes array "addr" with index "sizeof (netsnmp_indexed_addr_pair) /*60*/" at byte position 59. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTCPIPv6Domain.c:177: access_dbuff_const: Calling "memcpy" indexes array "addr" with index "sizeof (netsnmp_indexed_addr_pair) /*60*/" at byte position 59. |
| + | jsafranek: fixed in 5.7+, bee4d79 |
| | | |
| Error: OVERRUN_STATIC (CWE-125): | | Error: OVERRUN_STATIC (CWE-125): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUDPIPv6Domain.c:534: overrun-buffer-val: Overrunning static array "&mask.__in6_u.__u6_addr8[j] + 1" of size 16 bytes by passing it as an argument to a function which indexes it at byte position 16. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUDPIPv6Domain.c:534: overrun-buffer-val: Overrunning static array "&mask.__in6_u.__u6_addr8[j] + 1" of size 16 bytes by passing it as an argument to a function which indexes it at byte position 16. |
| + | jsafranek: false positive |
| | | |
| Error: OVERRUN_STATIC (CWE-125): | | Error: OVERRUN_STATIC (CWE-125): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUDPIPv6Domain.c:534: overrun-local: Overrunning static array of size 16 bytes at byte position 16 by indexing pointer "&mask.__in6_u.__u6_addr8[j]" with index variable "1" through dereference in call to "memset". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUDPIPv6Domain.c:534: overrun-local: Overrunning static array of size 16 bytes at byte position 16 by indexing pointer "&mask.__in6_u.__u6_addr8[j]" with index variable "1" through dereference in call to "memset". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUDPIPv6Domain.c:534: overrun-local: Note: These bugs are often difficult to see at first glance. Coverity recommends a close inspection of the events leading to this overrun. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUDPIPv6Domain.c:534: overrun-local: Note: These bugs are often difficult to see at first glance. Coverity recommends a close inspection of the events leading to this overrun. |
| + | jsafranek: false positive |
| | | |
| Error: OVERRUN_STATIC (CWE-125): | | Error: OVERRUN_STATIC (CWE-125): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUDPIPv6Domain.c:534: overrun-local: Overrunning static array of size 16 bytes at byte position 16 by indexing pointer "&mask.__in6_u.__u6_addr8[j]" with index variable "1" through dereference in call to "memset". (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUDPIPv6Domain.c:534: overrun-local: Overrunning static array of size 16 bytes at byte position 16 by indexing pointer "&mask.__in6_u.__u6_addr8[j]" with index variable "1" through dereference in call to "memset". (The dereference is assumed on the basis of the 'nonnull' parameter attribute.) |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUDPIPv6Domain.c:534: overrun-local: Note: These bugs are often difficult to see at first glance. Coverity recommends a close inspection of the events leading to this overrun. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUDPIPv6Domain.c:534: overrun-local: Note: These bugs are often difficult to see at first glance. Coverity recommends a close inspection of the events leading to this overrun. |
| + | jsafranek: false positive |
| </pre> | | </pre> |
| | | |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_enum.c:298: var_assign: Assigning: "lastnode" = "*list". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_enum.c:298: var_assign: Assigning: "lastnode" = "*list". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_enum.c:382: leaked_storage: Variable "list" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_enum.c:382: leaked_storage: Variable "list" going out of scope leaks the storage it points to. |
| + | jsafranek: false positive, se_add_pair_to_list() allocates new list only if created == 0 (-> the list is then added to sliststorage) |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:4883: var_assign: Assigning: "packet" = "pktbuf". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:4883: var_assign: Assigning: "packet" = "pktbuf". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:4894: leaked_storage: Variable "packet" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:4894: leaked_storage: Variable "packet" going out of scope leaks the storage it points to. |
| + | magfr: False positive |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:6208: var_assign: Assigning: "packet" = "pktbuf". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:6208: var_assign: Assigning: "packet" = "pktbuf". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:6222: leaked_storage: Variable "packet" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:6222: leaked_storage: Variable "packet" going out of scope leaks the storage it points to. |
| + | magfr: False positive |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/old_api.c:93: var_assign: Assigning: "reginfo" = storage returned from "calloc(1UL, sizeof (netsnmp_handler_registration) /*80*/)". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/old_api.c:93: var_assign: Assigning: "reginfo" = storage returned from "calloc(1UL, sizeof (netsnmp_handler_registration) /*80*/)". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/old_api.c:107: leaked_storage: Variable "reginfo" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/old_api.c:107: leaked_storage: Variable "reginfo" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.5+, ce1f284a6 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/old_api.c:98: var_assign: Assigning: "vp" = storage returned from "netsnmp_duplicate_variable((struct variable *)((char *)var + varsize * i))". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/old_api.c:98: var_assign: Assigning: "vp" = storage returned from "netsnmp_duplicate_variable((struct variable *)((char *)var + varsize * i))". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/old_api.c:107: leaked_storage: Variable "vp" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/old_api.c:107: leaked_storage: Variable "vp" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.5+, ce1f284a6 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2012: var_assign: Assigning: "np" = storage returned from "alloc_node(nop->modid)". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2012: var_assign: Assigning: "np" = storage returned from "alloc_node(nop->modid)". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2028: leaked_storage: Variable "np" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2028: leaked_storage: Variable "np" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.4+, a00f3d4 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2044: var_assign: Assigning: "oldnp" = "np". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2044: var_assign: Assigning: "oldnp" = "np". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2044: overwrite_var: Overwriting "oldnp" in call "oldnp = np" leaks the storage that "oldnp" points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:2044: overwrite_var: Overwriting "oldnp" in call "oldnp = np" leaks the storage that "oldnp" points to. |
| + | jsafranek: fixed in 5.4+, a00f3d4 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_array.c:577: var_assign: Assigning: "g" = storage returned from "calloc(1UL, sizeof (netsnmp_request_group) /*72*/)". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_array.c:577: var_assign: Assigning: "g" = storage returned from "calloc(1UL, sizeof (netsnmp_request_group) /*72*/)". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_array.c:580: leaked_storage: Variable "g" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_array.c:580: leaked_storage: Variable "g" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.5+, 2ae68f0 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_array.c:578: var_assign: Assigning: "i" = storage returned from "calloc(1UL, sizeof (netsnmp_request_group_item) /*24*/)". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_array.c:578: var_assign: Assigning: "i" = storage returned from "calloc(1UL, sizeof (netsnmp_request_group_item) /*24*/)". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_array.c:580: leaked_storage: Variable "i" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_array.c:580: leaked_storage: Variable "i" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.5+, 2ae68f0 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/agent_handler.c:950:53: noescape: "netsnmp_request_add_list_data" does not free or save its pointer parameter "request". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/agent_handler.c:950:53: noescape: "netsnmp_request_add_list_data" does not free or save its pointer parameter "request". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_iterator.c:651: leaked_storage: Variable "reqtmp" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/helpers/table_iterator.c:651: leaked_storage: Variable "reqtmp" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.5+, d5e817d |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/if-mib/data_access/interface_linux.c:579: var_assign: Assigning: "devin" = storage returned from "fopen("/proc/net/dev", "r")". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/if-mib/data_access/interface_linux.c:579: var_assign: Assigning: "devin" = storage returned from "fopen("/proc/net/dev", "r")". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/if-mib/data_access/interface_linux.c:592: leaked_storage: Variable "devin" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/if-mib/data_access/interface_linux.c:592: leaked_storage: Variable "devin" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.4+, d9d938d |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpCallbackDomain.c:380: var_assign: Assigning: "t" = storage returned from "calloc(1UL, sizeof (netsnmp_transport) /*168*/)". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpCallbackDomain.c:380: var_assign: Assigning: "t" = storage returned from "calloc(1UL, sizeof (netsnmp_transport) /*168*/)". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpCallbackDomain.c:389: leaked_storage: Variable "t" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpCallbackDomain.c:389: leaked_storage: Variable "t" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.5+, 9ba38ee |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_client.c:1392:47: noescape: "netsnmp_query_walk" does not free or save its pointer parameter "list". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_client.c:1392:47: noescape: "netsnmp_query_walk" does not free or save its pointer parameter "list". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:258: leaked_storage: Variable "var" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:258: leaked_storage: Variable "var" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.4+, eb21714 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:715: leaked_storage: Variable "dvar" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:715: leaked_storage: Variable "dvar" going out of scope leaks the storage it points to. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:715: leaked_storage: Variable "vp2" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:715: leaked_storage: Variable "vp2" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.4+, eb21714 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:314: overwrite_var: Overwriting "vp1_prev" in call "vp1_prev = vp1" leaks the storage that "vp1_prev" points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:314: overwrite_var: Overwriting "vp1_prev" in call "vp1_prev = vp1" leaks the storage that "vp1_prev" points to. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:315: overwrite_var: Overwriting "vp1" in call "vp1 = vp1->next_variable" leaks the storage that "vp1" points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:315: overwrite_var: Overwriting "vp1" in call "vp1 = vp1->next_variable" leaks the storage that "vp1" points to. |
| + | jsafranek: fixed in 5.4+, eb21714 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:615: leaked_storage: Variable "var" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:615: leaked_storage: Variable "var" going out of scope leaks the storage it points to. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:627: leaked_storage: Variable "var" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:627: leaked_storage: Variable "var" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.4+, eb21714 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:715: leaked_storage: Variable "var" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:715: leaked_storage: Variable "var" going out of scope leaks the storage it points to. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:715: leaked_storage: Variable "vp1" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/disman/event/mteTrigger.c:715: leaked_storage: Variable "vp1" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.4+, eb21714 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/header_complex.c:419: overwrite_var: Overwriting "hciptrp" in call "hciptrp = hciptrp->prev" leaks the storage that "hciptrp" points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/header_complex.c:419: overwrite_var: Overwriting "hciptrp" in call "hciptrp = hciptrp->prev" leaks the storage that "hciptrp" points to. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/header_complex.c:425: leaked_storage: Variable "ourself" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/header_complex.c:425: leaked_storage: Variable "ourself" going out of scope leaks the storage it points to. |
| + | jsafranek: false positive |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyFilterProfileTable.c:188: leaked_storage: Variable "StorageTmp" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyFilterProfileTable.c:188: leaked_storage: Variable "StorageTmp" going out of scope leaks the storage it points to. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyFilterProfileTable.c:197: leaked_storage: Variable "StorageTmp" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyFilterProfileTable.c:197: leaked_storage: Variable "StorageTmp" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.4+, 748da84 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyTable.c:520:50: noescape: "snmpNotifyTable_add" does not free or save its pointer parameter "thedata". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyTable.c:520:50: noescape: "snmpNotifyTable_add" does not free or save its pointer parameter "thedata". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyTable.c:397: leaked_storage: Variable "nptr" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyTable.c:397: leaked_storage: Variable "nptr" going out of scope leaks the storage it points to. |
| + | jsafranek: ??? TBD |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyTable.c:350: leaked_storage: Variable "pptr" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyTable.c:350: leaked_storage: Variable "pptr" going out of scope leaks the storage it points to. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyTable.c:367: leaked_storage: Variable "pptr" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyTable.c:367: leaked_storage: Variable "pptr" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.5+, dbf26a0 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyTable.c:576: leaked_storage: Variable "StorageTmp" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyTable.c:576: leaked_storage: Variable "StorageTmp" going out of scope leaks the storage it points to. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyTable.c:585: leaked_storage: Variable "StorageTmp" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/notification/snmpNotifyTable.c:585: leaked_storage: Variable "StorageTmp" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.4+, 0e52e4f |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:375: leaked_storage: Variable "s" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:375: leaked_storage: Variable "s" going out of scope leaks the storage it points to. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:378: leaked_storage: Variable "s" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:378: leaked_storage: Variable "s" going out of scope leaks the storage it points to. |
| + | jsafranek: false positive, if s is allocated, *dest_len == olen |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/sctp-mib/sctpScalars_linux.c:34: noescape: Variable "f" is not freed or pointed-to in function "fscanf". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/sctp-mib/sctpScalars_linux.c:34: noescape: Variable "f" is not freed or pointed-to in function "fscanf". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/sctp-mib/sctpScalars_linux.c:38: leaked_storage: Variable "f" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/sctp-mib/sctpScalars_linux.c:38: leaked_storage: Variable "f" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.4+, 65f2b7b |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/sctp-mib/sctpScalars_linux.c:139: leaked_storage: Variable "f" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/sctp-mib/sctpScalars_linux.c:139: leaked_storage: Variable "f" going out of scope leaks the storage it points to. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/sctp-mib/sctpScalars_linux.c:144: leaked_storage: Variable "f" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/sctp-mib/sctpScalars_linux.c:144: leaked_storage: Variable "f" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.4+, 65f2b7b |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:141: var_assign: Assigning: "aptr" = storage returned from "calloc(1UL, sizeof (smux_peer_auth) /*2064*/)". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:141: var_assign: Assigning: "aptr" = storage returned from "calloc(1UL, sizeof (smux_peer_auth) /*2064*/)". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:148: leaked_storage: Variable "aptr" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/smux/smux.c:148: leaked_storage: Variable "aptr" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.4+, 2c1507c |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/proxy.c:361: var_assign: Assigning: "pdu" = storage returned from "snmp_pdu_create(reqinfo->mode)". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/proxy.c:361: var_assign: Assigning: "pdu" = storage returned from "snmp_pdu_create(reqinfo->mode)". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/proxy.c:404: leaked_storage: Variable "pdu" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/proxy.c:404: leaked_storage: Variable "pdu" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed i 5.4+, 8b97a71 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/proxy.c:366: var_assign: Assigning: "pdu" = storage returned from "snmp_pdu_create(163)". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/proxy.c:366: var_assign: Assigning: "pdu" = storage returned from "snmp_pdu_create(163)". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/proxy.c:404: leaked_storage: Variable "pdu" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/proxy.c:404: leaked_storage: Variable "pdu" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed i 5.4+, 8b97a71 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd_log.c:998: var_assign: Assigning: "temp_buf" = storage returned from "calloc(tbuf_len, 1UL)". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd_log.c:998: var_assign: Assigning: "temp_buf" = storage returned from "calloc(tbuf_len, 1UL)". |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd_log.c:1023: leaked_storage: Variable "temp_buf" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd_log.c:1023: leaked_storage: Variable "temp_buf" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.4+, a0777d3 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:2036: noescape: Variable "netsnmp_openssl_cert_get_fingerprint(cert, -1)" is not freed or pointed-to in function "debugmsg". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:2036: noescape: Variable "netsnmp_openssl_cert_get_fingerprint(cert, -1)" is not freed or pointed-to in function "debugmsg". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:2036: noescape: Variable "netsnmp_openssl_cert_get_fingerprint(cert, -1)" is not freed or pointed-to in function "debugmsgtoken". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:2036: noescape: Variable "netsnmp_openssl_cert_get_fingerprint(cert, -1)" is not freed or pointed-to in function "debugmsgtoken". |
| + | jsafranek: fixed in 5.6+, dbc3130 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/container_binary_array.c:596: var_assign: Assigning: "rtn" = storage returned from "netsnmp_binary_array_get_subset(container, data, &len)". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/container_binary_array.c:596: var_assign: Assigning: "rtn" = storage returned from "netsnmp_binary_array_get_subset(container, data, &len)". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/container_binary_array.c:598: leaked_storage: Variable "rtn" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/container_binary_array.c:598: leaked_storage: Variable "rtn" going out of scope leaks the storage it points to. |
| + | jsafranek: false positive |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/data_list.c:244: var_assign: Assigning: "info" = storage returned from "calloc(1UL, sizeof (netsnmp_data_list_saveinfo) /*48*/)". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/data_list.c:244: var_assign: Assigning: "info" = storage returned from "calloc(1UL, sizeof (netsnmp_data_list_saveinfo) /*48*/)". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/data_list.c:277: leaked_storage: Variable "info" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/data_list.c:277: leaked_storage: Variable "info" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.4+, 536bc57 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:1269: var_assign: Assigning: "pdu" = storage returned from "snmp_pdu_create(160)". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:1269: var_assign: Assigning: "pdu" = storage returned from "snmp_pdu_create(160)". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:1283: leaked_storage: Variable "pdu" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_api.c:1283: leaked_storage: Variable "pdu" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.5+, f57ae53 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_enum.c:298: var_assign: Assigning: "lastnode" = "*list". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_enum.c:298: var_assign: Assigning: "lastnode" = "*list". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_enum.c:316: leaked_storage: Variable "list" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_enum.c:316: leaked_storage: Variable "list" going out of scope leaks the storage it points to. |
| + | jsafranek: false positive |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:274:35: noescape: "memdup" does not free or save its pointer parameter "from". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:274:35: noescape: "memdup" does not free or save its pointer parameter "from". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmptsm.c:368: leaked_storage: Variable "tmStateRef" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmptsm.c:368: leaked_storage: Variable "tmStateRef" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.5+, 34c9628 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmpusm.c:4293: leaked_storage: Variable "userKeyP" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmpusm.c:4293: leaked_storage: Variable "userKeyP" going out of scope leaks the storage it points to. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmpusm.c:4312: leaked_storage: Variable "userKeyP" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmpusm.c:4312: leaked_storage: Variable "userKeyP" going out of scope leaks the storage it points to. |
| + | jsafranek: false positive, read_config_read_octet_string() allocates only if the second argument is NULL |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmpusm.c:3507:23: noescape: "usm_get_user" does not free or save its pointer parameter "engineID". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmpusm.c:3507:23: noescape: "usm_get_user" does not free or save its pointer parameter "engineID". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmpusm.c:4198: leaked_storage: Variable "engineID" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmpusm.c:4198: leaked_storage: Variable "engineID" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.4+, 7e21413 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpDTLSUDPDomain.c:229: var_assign: Assigning: "cachep" = storage returned from "calloc(1UL, sizeof (bio_cache) /*88*/)". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpDTLSUDPDomain.c:229: var_assign: Assigning: "cachep" = storage returned from "calloc(1UL, sizeof (bio_cache) /*88*/)". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpDTLSUDPDomain.c:235: leaked_storage: Variable "cachep" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpDTLSUDPDomain.c:235: leaked_storage: Variable "cachep" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.6+, 4ff764e |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSBaseDomain.c:145: var_assign: Assigning: "fingerprint" = storage returned from "netsnmp_openssl_cert_get_fingerprint(remote_cert, -1)". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSBaseDomain.c:145: var_assign: Assigning: "fingerprint" = storage returned from "netsnmp_openssl_cert_get_fingerprint(remote_cert, -1)". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSBaseDomain.c:189: leaked_storage: Variable "fingerprint" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSBaseDomain.c:189: leaked_storage: Variable "fingerprint" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.6+, 585e3bd |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpDTLSUDPDomain.c:948: leaked_storage: Variable "addr_pair" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpDTLSUDPDomain.c:948: leaked_storage: Variable "addr_pair" going out of scope leaks the storage it points to. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpDTLSUDPDomain.c:948: leaked_storage: Variable "tmStateRef" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpDTLSUDPDomain.c:948: leaked_storage: Variable "tmStateRef" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.6+, 8d5e7a1 |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSBaseDomain.c:77: noescape: Variable "fingerprint" is not freed or pointed-to in function "debugmsg". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSBaseDomain.c:77: noescape: Variable "fingerprint" is not freed or pointed-to in function "debugmsg". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSBaseDomain.c:131: leaked_storage: Variable "fingerprint" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpTLSBaseDomain.c:131: leaked_storage: Variable "fingerprint" going out of scope leaks the storage it points to. |
| + | jsafranek: fixed in 5.6+, 585e3bd |
| | | |
| Error: RESOURCE_LEAK (CWE-404): | | Error: RESOURCE_LEAK (CWE-404): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:2061: var_assign: Assigning: "*objid" = "malloc(1024UL)". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:2061: var_assign: Assigning: "*objid" = "malloc(1024UL)". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/vacm.c:189: leaked_storage: Variable "viewSubtree" going out of scope leaks the storage it points to. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/vacm.c:189: leaked_storage: Variable "viewSubtree" going out of scope leaks the storage it points to. |
| + | jsafranek: false positive |
| </pre> | | </pre> |
| | | |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:1182: deref_ptr: Directly dereferencing pointer "key". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:1182: deref_ptr: Directly dereferencing pointer "key". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:1188: check_after_deref: Dereferencing "key" before a null check. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:1188: check_after_deref: Dereferencing "key" before a null check. |
| + | jsafranek: fixed in 5.6+, 73a523e |
| | | |
| Error: REVERSE_INULL (CWE-476): | | Error: REVERSE_INULL (CWE-476): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/container_binary_array.c:490: deref_ptr: Directly dereferencing pointer "c". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/container_binary_array.c:490: deref_ptr: Directly dereferencing pointer "c". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/container_binary_array.c:498: check_after_deref: Dereferencing "c" before a null check. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/container_binary_array.c:498: check_after_deref: Dereferencing "c" before a null check. |
| + | jsafranek: fixed in 5.6+, 202523c |
| | | |
| Error: REVERSE_INULL (CWE-476): | | Error: REVERSE_INULL (CWE-476): |
|
|
| Error: SECURE_TEMP (CWE-377): | | Error: SECURE_TEMP (CWE-377): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/system.c:1259: secure_temp: Calling "mkstemp" without securely setting umask first. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/system.c:1259: secure_temp: Calling "mkstemp" without securely setting umask first. |
| + | jsafranek: fixed in 5.4+, bb8fcbb |
| | | |
| Error: SECURE_TEMP (CWE-377): | | Error: SECURE_TEMP (CWE-377): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/util_funcs.c:134: secure_temp: Calling "mkstemp" without securely setting umask first. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/util_funcs.c:134: secure_temp: Calling "mkstemp" without securely setting umask first. |
| + | jsafranek: fixed in 5.4+, bb8fcbb |
| </pre> | | </pre> |
| | | |
| ==SIZECHECK== | | ==SIZECHECK== |
| <pre> | | <pre> |
− | Error: SIZECHECK (CWE-131): | + | Error: SIZECHECK (CWE-1+31): |
| /builddir/build/BUILD/net-snmp-5.7.1/perl/SNMP/SNMP.xs:1041: buffer_alloc: "netsnmp_malloc(sizeof (in_addr_t) /*4*/)" allocates memory. | | /builddir/build/BUILD/net-snmp-5.7.1/perl/SNMP/SNMP.xs:1041: buffer_alloc: "netsnmp_malloc(sizeof (in_addr_t) /*4*/)" allocates memory. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:118: buffer_alloc: "malloc" allocates memory determined by parameter "size" of the current function. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:118: buffer_alloc: "malloc" allocates memory determined by parameter "size" of the current function. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:118: return_dbuffer: Returning allocated array "malloc(size)". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:118: return_dbuffer: Returning allocated array "malloc(size)". |
| /builddir/build/BUILD/net-snmp-5.7.1/perl/SNMP/SNMP.xs:1041: size_error: Allocating 4 bytes to pointer "vars->val.integer", which needs at least 8 bytes. | | /builddir/build/BUILD/net-snmp-5.7.1/perl/SNMP/SNMP.xs:1041: size_error: Allocating 4 bytes to pointer "vars->val.integer", which needs at least 8 bytes. |
| + | jsafranek: fixed in 5.4+, 8016890 |
| | | |
| Error: SIZECHECK (CWE-131): | | Error: SIZECHECK (CWE-131): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUnixDomain.c:361: size_is_strlen: Calling allocating function "malloc" with function argument "strlen(addr->sun_path)". Did you intend to add 1 to the byte count? | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUnixDomain.c:361: size_is_strlen: Calling allocating function "malloc" with function argument "strlen(addr->sun_path)". Did you intend to add 1 to the byte count? |
| + | jsafranek: false positive |
| | | |
| Error: SIZECHECK (CWE-131): | | Error: SIZECHECK (CWE-131): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUnixDomain.c:423: size_is_strlen: Calling allocating function "malloc" with function argument "strlen(addr->sun_path)". Did you intend to add 1 to the byte count? | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/transports/snmpUnixDomain.c:423: size_is_strlen: Calling allocating function "malloc" with function argument "strlen(addr->sun_path)". Did you intend to add 1 to the byte count? |
| + | jsafranek: false positive |
| </pre> | | </pre> |
| | | |
|
|
| Error: SIZEOF_MISMATCH (CWE-569): | | Error: SIZEOF_MISMATCH (CWE-569): |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmpnetstat/inet.c:252: suspicious_sizeof: Passing argument "root" of type "oid *" and argument "sizeof (root) /*8*/ * root_len" to function "memmove" is suspicious. Did you intend to use "sizeof(*root)" instead of "sizeof (root)" ? In this particular case sizeof(oid *) happens to be equal to sizeof(oid), but this is not a portable assumption. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmpnetstat/inet.c:252: suspicious_sizeof: Passing argument "root" of type "oid *" and argument "sizeof (root) /*8*/ * root_len" to function "memmove" is suspicious. Did you intend to use "sizeof(*root)" instead of "sizeof (root)" ? In this particular case sizeof(oid *) happens to be equal to sizeof(oid), but this is not a portable assumption. |
| + | jsafranek: fixed in 5.5+, cd859ad51c4f18d5b0fc69dd669fcb051c798969 |
| | | |
| Error: SIZEOF_MISMATCH (CWE-569): | | Error: SIZEOF_MISMATCH (CWE-569): |
| /builddir/build/BUILD/net-snmp-5.7.1/perl/OID/OID.xs:128: suspicious_sizeof: Passing argument "buf" of type "char *" and argument "sizeof (buf) /*8*/" to function "snprint_bitstring" is suspicious. | | /builddir/build/BUILD/net-snmp-5.7.1/perl/OID/OID.xs:128: suspicious_sizeof: Passing argument "buf" of type "char *" and argument "sizeof (buf) /*8*/" to function "snprint_bitstring" is suspicious. |
| + | jsafranek: fixed in 5.4+, 30ff58d09d4c9d5438bb621054fd7ad7a2a597e4 |
| </pre> | | </pre> |
| | | |
|
|
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/system.c:1205: fixed_size_dest: You might overrun the 4096 byte fixed-size string "buf" by copying "entry" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/system.c:1205: fixed_size_dest: You might overrun the 4096 byte fixed-size string "buf" by copying "entry" without checking the length. |
| + | jsafranek: fixed in 5.4+, 8850616 |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_parse_args.c:213: fixed_size_dest: You might overrun the 512 byte fixed-size string "Opts" by copying "localOpts" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_parse_args.c:213: fixed_size_dest: You might overrun the 512 byte fixed-size string "Opts" by copying "localOpts" without checking the length. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_parse_args.c:213: parameter_as_source: Note: This defect has an elevated risk because the source argument is a parameter of the current function. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_parse_args.c:213: parameter_as_source: Note: This defect has an elevated risk because the source argument is a parameter of the current function. |
| + | jsafranek: fixed in 5.4+, 4600d11 |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/cpu/cpu_linux.c:75: fixed_size_dest: You might overrun the 4096 byte fixed-size string "cpu->descr" by copying "cp + 2" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/cpu/cpu_linux.c:75: fixed_size_dest: You might overrun the 4096 byte fixed-size string "cpu->descr" by copying "cp + 2" without checking the length. |
| + | jsafranek: false positive, cp points into buf and it's 1024 bytes at most |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/cpu/cpu_linux.c:83: fixed_size_dest: You might overrun the 4096 byte fixed-size string "cpu->descr" by copying "cp" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/cpu/cpu_linux.c:83: fixed_size_dest: You might overrun the 4096 byte fixed-size string "cpu->descr" by copying "cp" without checking the length. |
| + | jsafranek: false positive, cp points into buf and it's 1024 bytes at most |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/system.c:1257: fixed_size_dest: You might overrun the 4096 byte fixed-size string "name" by copying the return value of "get_temp_file_pattern" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/system.c:1257: fixed_size_dest: You might overrun the 4096 byte fixed-size string "name" by copying the return value of "get_temp_file_pattern" without checking the length. |
| + | jsafranek: fixed in 5.4+, c310e39 |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/etherlike-mib/data_access/dot3stats_linux.c:658: fixed_size_dest: You might overrun the 16 byte fixed-size string "ifr.ifr_ifrn.ifrn_name" by copying "name" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/etherlike-mib/data_access/dot3stats_linux.c:658: fixed_size_dest: You might overrun the 16 byte fixed-size string "ifr.ifr_ifrn.ifrn_name" by copying "name" without checking the length. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/etherlike-mib/data_access/dot3stats_linux.c:658: parameter_as_source: Note: This defect has an elevated risk because the source argument is a parameter of the current function. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/etherlike-mib/data_access/dot3stats_linux.c:658: parameter_as_source: Note: This defect has an elevated risk because the source argument is a parameter of the current function. |
| + | jsafranek: fixed in 5.5+, 84c807e |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/cpu/cpu.c:145: fixed_size_dest: You might overrun the 4096 byte fixed-size string "cpu->name" by copying "name" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/cpu/cpu.c:145: fixed_size_dest: You might overrun the 4096 byte fixed-size string "cpu->name" by copying "name" without checking the length. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/cpu/cpu.c:145: parameter_as_source: Note: This defect has an elevated risk because the source argument is a parameter of the current function. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/cpu/cpu.c:145: parameter_as_source: Note: This defect has an elevated risk because the source argument is a parameter of the current function. |
| + | jsafranek: fixed in 5.4+, 1cb2462 |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/sensors/hw_sensors.c:166: fixed_size_dest: You might overrun the 256 byte fixed-size string "sp->name" by copying "name" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/sensors/hw_sensors.c:166: fixed_size_dest: You might overrun the 256 byte fixed-size string "sp->name" by copying "name" without checking the length. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/sensors/hw_sensors.c:166: parameter_as_source: Note: This defect has an elevated risk because the source argument is a parameter of the current function. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/hardware/sensors/hw_sensors.c:166: parameter_as_source: Note: This defect has an elevated risk because the source argument is a parameter of the current function. |
| + | jsafranek: fixed in 5.5+, be1375a |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/rmon-mib/data_access/etherstats_linux.c:165: fixed_size_dest: You might overrun the 16 byte fixed-size string "ifr.ifr_ifrn.ifrn_name" by copying "name" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/rmon-mib/data_access/etherstats_linux.c:165: fixed_size_dest: You might overrun the 16 byte fixed-size string "ifr.ifr_ifrn.ifrn_name" by copying "name" without checking the length. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/rmon-mib/data_access/etherstats_linux.c:165: parameter_as_source: Note: This defect has an elevated risk because the source argument is a parameter of the current function. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/rmon-mib/data_access/etherstats_linux.c:165: parameter_as_source: Note: This defect has an elevated risk because the source argument is a parameter of the current function. |
| + | jsafranek: fixed in 5.5+, 88e1f34 |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/target/snmpTargetAddrEntry.c:873: fixed_size_dest: You might overrun the 1500 byte fixed-size string "string" by copying "temp_struct->params" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/target/snmpTargetAddrEntry.c:873: fixed_size_dest: You might overrun the 1500 byte fixed-size string "string" by copying "temp_struct->params" without checking the length. |
| + | jsafranek: fixed in 5.5+, 8291d7c |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/target/snmpTargetAddrEntry.c:863: fixed_size_dest: You might overrun the 1500 byte fixed-size string "string" by copying "temp_struct->tagList" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/target/snmpTargetAddrEntry.c:863: fixed_size_dest: You might overrun the 1500 byte fixed-size string "string" by copying "temp_struct->tagList" without checking the length. |
| + | jsafranek: fixed in 5.5+, 8291d7c |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/versioninfo.c:111: fixed_size_dest: You might overrun the 300 byte fixed-size string "errmsg" by copying the return value of "netsnmp_get_version" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/versioninfo.c:111: fixed_size_dest: You might overrun the 300 byte fixed-size string "errmsg" by copying the return value of "netsnmp_get_version" without checking the length. |
| + | jsafranek: fixed in 5.5+, 560bc6c |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/versioninfo.c:121: fixed_size_dest: You might overrun the 300 byte fixed-size string "errmsg" by copying "cptr" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/versioninfo.c:121: fixed_size_dest: You might overrun the 300 byte fixed-size string "errmsg" by copying "cptr" without checking the length. |
| + | jsafranek: fixed in 5.5+, 560bc6c |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/util_funcs.c:132: fixed_size_dest: You might overrun the 32 byte fixed-size string "name" by copying the return value of "get_temp_file_pattern" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/util_funcs.c:132: fixed_size_dest: You might overrun the 32 byte fixed-size string "name" by copying the return value of "get_temp_file_pattern" without checking the length. |
| + | jsafranek: fixed in 5.4+, 0efdd02 |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmpdelta.c:474: fixed_size_dest: You might overrun the 64 byte fixed-size string "vip->descriptor" by copying "SumFile" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmpdelta.c:474: fixed_size_dest: You might overrun the 64 byte fixed-size string "vip->descriptor" by copying "SumFile" without checking the length. |
| + | jsafranek: fixed in 5.4+, d369318 |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:436: fixed_size_dest: You might overrun the 8192 byte fixed-size string "buf" by copying "default_port" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:436: fixed_size_dest: You might overrun the 8192 byte fixed-size string "buf" by copying "default_port" without checking the length. |
| + | jsafranek: fixed in 5.4+, 21d25d8 |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/perl/SNMP/SNMP.xs:938: fixed_size_dest: You might overrun the 4096 byte fixed-size string "soid_buf" by copying "soid_str" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/perl/SNMP/SNMP.xs:938: fixed_size_dest: You might overrun the 4096 byte fixed-size string "soid_buf" by copying "soid_str" without checking the length. |
| /builddir/build/BUILD/net-snmp-5.7.1/perl/SNMP/SNMP.xs:938: parameter_as_source: Note: This defect has an elevated risk because the source argument is a parameter of the current function. | | /builddir/build/BUILD/net-snmp-5.7.1/perl/SNMP/SNMP.xs:938: parameter_as_source: Note: This defect has an elevated risk because the source argument is a parameter of the current function. |
| + | jsafranek: fixed in 5.4+, fba188e |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/perl/SNMP/SNMP.xs:4844: fixed_size_dest: You might overrun the 4096 byte fixed-size string "str_buf_temp" by copying "iid" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/perl/SNMP/SNMP.xs:4844: fixed_size_dest: You might overrun the 4096 byte fixed-size string "str_buf_temp" by copying "iid" without checking the length. |
| + | jsafranek: fixed in 5.4+, 3aad15a |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/perl/SNMP/SNMP.xs:4841: fixed_size_dest: You might overrun the 4096 byte fixed-size string "str_buf_temp" by copying "label" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/perl/SNMP/SNMP.xs:4841: fixed_size_dest: You might overrun the 4096 byte fixed-size string "str_buf_temp" by copying "label" without checking the length. |
| + | jsafranek: fixed in 5.4+, 3aad15a |
| | | |
| Error: STRING_OVERFLOW (CWE-120): | | Error: STRING_OVERFLOW (CWE-120): |
| /builddir/build/BUILD/net-snmp-5.7.1/python/netsnmp/client_intf.c:857: fixed_size_dest: You might overrun the 4096 byte fixed-size string "soid_buf" by copying "soid_str" without checking the length. | | /builddir/build/BUILD/net-snmp-5.7.1/python/netsnmp/client_intf.c:857: fixed_size_dest: You might overrun the 4096 byte fixed-size string "soid_buf" by copying "soid_str" without checking the length. |
| /builddir/build/BUILD/net-snmp-5.7.1/python/netsnmp/client_intf.c:857: parameter_as_source: Note: This defect has an elevated risk because the source argument is a parameter of the current function. | | /builddir/build/BUILD/net-snmp-5.7.1/python/netsnmp/client_intf.c:857: parameter_as_source: Note: This defect has an elevated risk because the source argument is a parameter of the current function. |
| + | jsafranek: fixed in 5.4+, fba188e |
| </pre> | | </pre> |
| | | |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/ipv6.c:2253: var_assign_var: Assigning: "if_index" = "last_if_count". Both are now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/ipv6.c:2253: var_assign_var: Assigning: "if_index" = "last_if_count". Both are now tainted. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/ipv6.c:2254: tainted_data: Passing tainted variable "sizeof (struct if_nameindex) /*16*/ * (last_if_count + 2)" to a tainted sink. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/ipv6.c:2254: tainted_data: Passing tainted variable "sizeof (struct if_nameindex) /*16*/ * (last_if_count + 2)" to a tainted sink. |
| + | jsafranek: false positive, we trust /proc |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/ipv6.c:2259: tainted_data: Using tainted variable "if_index" as a loop boundary. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/ipv6.c:2259: tainted_data: Using tainted variable "if_index" as a loop boundary. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/ipv6.c:2265: tainted_data: Using tainted variable "if_index" as a loop boundary. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/ipv6.c:2265: tainted_data: Using tainted variable "if_index" as a loop boundary. |
| + | jsafranek: false positive, we trust /proc |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/ipv6.c:2259: tainted_data: Using tainted variable "if_index" as a loop boundary. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/ipv6.c:2259: tainted_data: Using tainted variable "if_index" as a loop boundary. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/ipv6.c:2265: tainted_data: Using tainted variable "if_index" as a loop boundary. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/mibII/ipv6.c:2265: tainted_data: Using tainted variable "if_index" as a loop boundary. |
| + | jsafranek: false positive, we trust /proc |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:358: var_assign_parm: Assigning: "line_len" = "len". "line_len" is now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:358: var_assign_parm: Assigning: "line_len" = "len". "line_len" is now tainted. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: a_loop_bound: Using tainted variable "line_len" as a loop boundary. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: a_loop_bound: Using tainted variable "line_len" as a loop boundary. |
| + | jsafranek: false positive, there is _asn_parse_length_check protecting the length |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:358: var_assign_parm: Assigning: "line_len" = "len". "line_len" is now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:358: var_assign_parm: Assigning: "line_len" = "len". "line_len" is now tainted. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: a_loop_bound: Using tainted variable "line_len" as a loop boundary. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: a_loop_bound: Using tainted variable "line_len" as a loop boundary. |
| + | jsafranek: false positive, there is _asn_parse_length_check protecting the length |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:358: var_assign_parm: Assigning: "line_len" = "len". "line_len" is now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:358: var_assign_parm: Assigning: "line_len" = "len". "line_len" is now tainted. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: a_loop_bound: Using tainted variable "line_len" as a loop boundary. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: a_loop_bound: Using tainted variable "line_len" as a loop boundary. |
| + | jsafranek: false positive, there is _asn_parse_length_check protecting the length |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:358: var_assign_parm: Assigning: "line_len" = "len". "line_len" is now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:358: var_assign_parm: Assigning: "line_len" = "len". "line_len" is now tainted. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: a_loop_bound: Using tainted variable "line_len" as a loop boundary. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: a_loop_bound: Using tainted variable "line_len" as a loop boundary. |
| + | jsafranek: false positive, there is _asn_parse_length_check protecting the length |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:358: var_assign_parm: Assigning: "line_len" = "len". "line_len" is now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:358: var_assign_parm: Assigning: "line_len" = "len". "line_len" is now tainted. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: a_loop_bound: Using tainted variable "line_len" as a loop boundary. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: a_loop_bound: Using tainted variable "line_len" as a loop boundary. |
| + | jsafranek: false positive, there is _asn_parse_length_check protecting the length |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:358: var_assign_parm: Assigning: "line_len" = "len". "line_len" is now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:358: var_assign_parm: Assigning: "line_len" = "len". "line_len" is now tainted. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: a_loop_bound: Using tainted variable "line_len" as a loop boundary. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: a_loop_bound: Using tainted variable "line_len" as a loop boundary. |
| + | jsafranek: false positive, there is _asn_parse_length_check protecting the length |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:358: var_assign_parm: Assigning: "line_len" = "len". "line_len" is now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:358: var_assign_parm: Assigning: "line_len" = "len". "line_len" is now tainted. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: a_loop_bound: Using tainted variable "line_len" as a loop boundary. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: a_loop_bound: Using tainted variable "line_len" as a loop boundary. |
| + | jsafranek: false positive, there is _asn_parse_length_check protecting the length |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:358: var_assign_parm: Assigning: "line_len" = "len". "line_len" is now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:358: var_assign_parm: Assigning: "line_len" = "len". "line_len" is now tainted. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: a_loop_bound: Using tainted variable "line_len" as a loop boundary. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/mib.c:360: a_loop_bound: Using tainted variable "line_len" as a loop boundary. |
| + | jsafranek: false positive, there is _asn_parse_length_check protecting the length |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:676: tainted_data: Passing tainted variable "*optarg" to a tainted sink. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:676: tainted_data: Passing tainted variable "*optarg" to a tainted sink. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:676: tainted_data: Passing tainted variable "*optarg" to a tainted sink. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:676: tainted_data: Passing tainted variable "*optarg" to a tainted sink. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:700: var_assign_var: Assigning: "optarg" = "app_name". Both are now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:700: var_assign_var: Assigning: "optarg" = "app_name". Both are now tainted. |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:700: var_assign_var: Assigning: "optarg" = "app_name". Both are now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:700: var_assign_var: Assigning: "optarg" = "app_name". Both are now tainted. |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:712: var_assign_var: Assigning: "optarg" = "pid_file". Both are now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:712: var_assign_var: Assigning: "optarg" = "pid_file". Both are now tainted. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:795: tainted_data_transitive: Call to function "strtoul" with tainted argument "optarg" returns tainted data. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:795: tainted_data_transitive: Call to function "strtoul" with tainted argument "optarg" returns tainted data. |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:700: var_assign_var: Assigning: "optarg" = "app_name". Both are now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:700: var_assign_var: Assigning: "optarg" = "app_name". Both are now tainted. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:712: var_assign_var: Assigning: "optarg" = "pid_file". Both are now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:712: var_assign_var: Assigning: "optarg" = "pid_file". Both are now tainted. |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:795: tainted_data_transitive: Call to function "strtoul" with tainted argument "optarg" returns tainted data. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:795: tainted_data_transitive: Call to function "strtoul" with tainted argument "optarg" returns tainted data. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:795: tainted_data_transitive: Call to function "strtoul" with tainted argument "optarg" returns tainted data. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:795: tainted_data_transitive: Call to function "strtoul" with tainted argument "optarg" returns tainted data. |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:542: parm_assign_alias: Assigning: "cp" = "hex", which taints "cp". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:542: parm_assign_alias: Assigning: "cp" = "hex", which taints "cp". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:553: data_index: Using tainted variable "(int)(int)cp[1]" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:553: data_index: Using tainted variable "(int)(int)cp[1]" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/agentxtrap.c:484: tainted_data: Passing tainted variable "*optarg" to a tainted sink. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/agentxtrap.c:484: tainted_data: Passing tainted variable "*optarg" to a tainted sink. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/agentxtrap.c:484: tainted_data: Passing tainted variable "*optarg" to a tainted sink. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/agentxtrap.c:484: tainted_data: Passing tainted variable "*optarg" to a tainted sink. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:542: parm_assign_alias: Assigning: "cp" = "hex", which taints "cp". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:542: parm_assign_alias: Assigning: "cp" = "hex", which taints "cp". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:553: data_index: Using tainted variable "(int)(int)cp[1]" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:553: data_index: Using tainted variable "(int)(int)cp[1]" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/agentxtrap.c:484: tainted_data: Passing tainted variable "*optarg" to a tainted sink. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/agentxtrap.c:484: tainted_data: Passing tainted variable "*optarg" to a tainted sink. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:441: parm_assign_alias: Assigning: "ip" = "input", which taints "ip". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:441: parm_assign_alias: Assigning: "ip" = "input", which taints "ip". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:447: data_index: Using tainted variable "(int)*ip" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:447: data_index: Using tainted variable "(int)*ip" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:148: var_assign_var: Assigning: "(u_char *)argv[++arg]" = "engineid". Both are now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:148: var_assign_var: Assigning: "(u_char *)argv[++arg]" = "engineid". Both are now tainted. |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:227: tainted_data: Using tainted variable "(int)engineid[1]" as an index to pointer "*__ctype_tolower_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:227: tainted_data: Using tainted variable "(int)engineid[1]" as an index to pointer "*__ctype_tolower_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:542: parm_assign_alias: Assigning: "cp" = "hex", which taints "cp". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:542: parm_assign_alias: Assigning: "cp" = "hex", which taints "cp". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:553: data_index: Using tainted variable "(int)(int)cp[1]" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:553: data_index: Using tainted variable "(int)(int)cp[1]" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:542: parm_assign_alias: Assigning: "cp" = "hex", which taints "cp". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:542: parm_assign_alias: Assigning: "cp" = "hex", which taints "cp". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:553: data_index: Using tainted variable "(int)(int)cp[1]" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:553: data_index: Using tainted variable "(int)(int)cp[1]" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data: Passing tainted variable "*optarg" to a tainted sink. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data: Passing tainted variable "*optarg" to a tainted sink. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data: Passing tainted variable "*optarg" to a tainted sink. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data: Passing tainted variable "*optarg" to a tainted sink. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data: Passing tainted variable "*optarg" to a tainted sink. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data: Passing tainted variable "*optarg" to a tainted sink. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data: Passing tainted variable "*optarg" to a tainted sink. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data: Passing tainted variable "*optarg" to a tainted sink. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data: Passing tainted variable "*optarg" to a tainted sink. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data: Passing tainted variable "*optarg" to a tainted sink. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data: Passing tainted variable "*optarg" to a tainted sink. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data: Passing tainted variable "*optarg" to a tainted sink. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data: Passing tainted variable "*optarg" to a tainted sink. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data: Passing tainted variable "*optarg" to a tainted sink. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:838: tainted_data: Passing tainted variable "*optarg" to a tainted sink. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:838: tainted_data: Passing tainted variable "*optarg" to a tainted sink. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:838: tainted_data: Passing tainted variable "*optarg" to a tainted sink. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:838: tainted_data: Passing tainted variable "*optarg" to a tainted sink. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:838: tainted_data: Passing tainted variable "*optarg" to a tainted sink. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:838: tainted_data: Passing tainted variable "*optarg" to a tainted sink. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:838: tainted_data: Passing tainted variable "*optarg" to a tainted sink. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:838: tainted_data: Passing tainted variable "*optarg" to a tainted sink. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:382: data_index: Using tainted variable "(int)(unsigned char)*optarg" as an index to pointer "*__ctype_b_loc()". |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:876: tainted_data_transitive: Call to function "strtoul" with tainted argument "optarg" returns tainted data. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:876: tainted_data_transitive: Call to function "strtoul" with tainted argument "optarg" returns tainted data. |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:542: parm_assign_alias: Assigning: "cp" = "hex", which taints "cp". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:542: parm_assign_alias: Assigning: "cp" = "hex", which taints "cp". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:553: data_index: Using tainted variable "(int)(int)cp[1]" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:553: data_index: Using tainted variable "(int)(int)cp[1]" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| | | |
| Error: TAINTED_SCALAR (CWE-20): | | Error: TAINTED_SCALAR (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:542: parm_assign_alias: Assigning: "cp" = "hex", which taints "cp". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:542: parm_assign_alias: Assigning: "cp" = "hex", which taints "cp". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:553: data_index: Using tainted variable "(int)(int)cp[1]" as an index to pointer "*__ctype_b_loc()". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/tools.c:553: data_index: Using tainted variable "(int)(int)cp[1]" as an index to pointer "*__ctype_b_loc()". |
| + | jsafranek: false positive, iterating through cmdline argument is not harmful |
| </pre> | | </pre> |
| | | |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:684: tainted_string: Passing tainted string "optarg" to a function that cannot accept tainted data. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:684: tainted_string: Passing tainted string "optarg" to a function that cannot accept tainted data. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:692: tainted_string: Passing tainted string "optarg" to a function that cannot accept tainted data. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:692: tainted_string: Passing tainted string "optarg" to a function that cannot accept tainted data. |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:684: tainted_string: Passing tainted string "optarg" to a function that cannot accept tainted data. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:684: tainted_string: Passing tainted string "optarg" to a function that cannot accept tainted data. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:692: tainted_string: Passing tainted string "optarg" to a function that cannot accept tainted data. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:692: tainted_string: Passing tainted string "optarg" to a function that cannot accept tainted data. |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:692: tainted_string: Passing tainted string "optarg" to a function that cannot accept tainted data. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:692: tainted_string: Passing tainted string "optarg" to a function that cannot accept tainted data. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:700: var_assign_var: Assigning: "app_name" = "optarg". Both are now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:700: var_assign_var: Assigning: "app_name" = "optarg". Both are now tainted. |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:692: tainted_string: Passing tainted string "optarg" to a function that cannot accept tainted data. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:692: tainted_string: Passing tainted string "optarg" to a function that cannot accept tainted data. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:700: var_assign_var: Assigning: "app_name" = "optarg". Both are now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:700: var_assign_var: Assigning: "app_name" = "optarg". Both are now tainted. |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:712: var_assign_var: Assigning: "pid_file" = "optarg". Both are now tainted. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:712: var_assign_var: Assigning: "pid_file" = "optarg". Both are now tainted. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:1000: tainted_string: Passing tainted string "pid_file" to a function that cannot accept tainted data. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:1000: tainted_string: Passing tainted string "pid_file" to a function that cannot accept tainted data. |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:795: tainted_data_transitive: Call to function "strtoul" with tainted argument "optarg" returns tainted data. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:795: tainted_data_transitive: Call to function "strtoul" with tainted argument "optarg" returns tainted data. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:1000: tainted_string: Passing tainted string "pid_file" to a function that cannot accept tainted data. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:1000: tainted_string: Passing tainted string "pid_file" to a function that cannot accept tainted data. |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:795: tainted_data_transitive: Call to function "strtoul" with tainted argument "optarg" returns tainted data. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:795: tainted_data_transitive: Call to function "strtoul" with tainted argument "optarg" returns tainted data. |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:1000: tainted_string: Passing tainted string "pid_file" to a function that cannot accept tainted data. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/snmpd.c:1000: tainted_string: Passing tainted string "pid_file" to a function that cannot accept tainted data. |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/agentxtrap.c:484: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/agentxtrap.c:484: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/agentxtrap.c:484: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/agentxtrap.c:484: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/agentxtrap.c:484: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/agentxtrap.c:484: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/agentxtrap.c:484: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/agentxtrap.c:484: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptranslate.c:227: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:838: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:838: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:838: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:838: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:838: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:838: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:838: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:838: tainted_data_transitive: Call to function "snmp_log_options" with tainted argument "argv" transitively taints "optarg". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". |
| + | jsafranek: false positive |
| | | |
| Error: TAINTED_STRING (CWE-20): | | Error: TAINTED_STRING (CWE-20): |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/snmp_logging.c:396: parm_assign: Assigning: "optarg" = "argv[optind]", which taints "optarg". |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:876: tainted_data_transitive: Call to function "strtoul" with tainted argument "optarg" returns tainted data. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/snmptrapd.c:876: tainted_data_transitive: Call to function "strtoul" with tainted argument "optarg" returns tainted data. |
| + | jsafranek: false positive |
| </pre> | | </pre> |
| | | |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/system.c:1209: fs_check_call: Calling function "stat" to perform check on "buf". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/system.c:1209: fs_check_call: Calling function "stat" to perform check on "buf". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/system.c:1216: toctou: Calling function "mkdir" that uses "buf" after a check function. This can cause a time-of-check, time-of-use race condition. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/system.c:1216: toctou: Calling function "mkdir" that uses "buf" after a check function. This can cause a time-of-check, time-of-use race condition. |
| + | jsafranek: IMHO harmless |
| | | |
| Error: TOCTOU (CWE-367): | | Error: TOCTOU (CWE-367): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:4892: fs_check_call: Calling function "stat" to perform check on "dirname". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:4892: fs_check_call: Calling function "stat" to perform check on "dirname". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:4928: toctou: Calling function "opendir" that uses "dirname" after a check function. This can cause a time-of-check, time-of-use race condition. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:4928: toctou: Calling function "opendir" that uses "dirname" after a check function. This can cause a time-of-check, time-of-use race condition. |
| + | jsafranek: false positive |
| | | |
| Error: TOCTOU (CWE-367): | | Error: TOCTOU (CWE-367): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:4892: fs_check_call: Calling function "stat" to perform check on "token". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:4892: fs_check_call: Calling function "stat" to perform check on "token". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:4895: toctou: Calling function "fopen" that uses "token" after a check function. This can cause a time-of-check, time-of-use race condition. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:4895: toctou: Calling function "fopen" that uses "token" after a check function. This can cause a time-of-check, time-of-use race condition. |
| + | jsafranek: false positive |
| | | |
| Error: TOCTOU (CWE-367): | | Error: TOCTOU (CWE-367): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/util_funcs/get_pid_from_inode.c:152: fs_check_call: Calling function "readlink" to perform check on "path_name". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/util_funcs/get_pid_from_inode.c:152: fs_check_call: Calling function "readlink" to perform check on "path_name". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/util_funcs/get_pid_from_inode.c:140: toctou: Calling function "opendir" that uses "path_name" after a check function. This can cause a time-of-check, time-of-use race condition. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/util_funcs/get_pid_from_inode.c:140: toctou: Calling function "opendir" that uses "path_name" after a check function. This can cause a time-of-check, time-of-use race condition. |
| + | jsafranek: false positive |
| | | |
| Error: TOCTOU (CWE-367): | | Error: TOCTOU (CWE-367): |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/logmatch.c:251: fs_check_call: Calling function "stat" to perform check on "logmatchTable[iindex].filename". | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/logmatch.c:251: fs_check_call: Calling function "stat" to perform check on "logmatchTable[iindex].filename". |
| /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/logmatch.c:259: toctou: Calling function "fopen" that uses "logmatchTable[iindex].filename" after a check function. This can cause a time-of-check, time-of-use race condition. | | /builddir/build/BUILD/net-snmp-5.7.1/agent/mibgroup/ucd-snmp/logmatch.c:259: toctou: Calling function "fopen" that uses "logmatchTable[iindex].filename" after a check function. This can cause a time-of-check, time-of-use race condition. |
| + | jsafranek: false positive |
| | | |
| Error: TOCTOU (CWE-367): | | Error: TOCTOU (CWE-367): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:1634: fs_check_call: Calling function "stat" to perform check on "file". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:1634: fs_check_call: Calling function "stat" to perform check on "file". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:1637: toctou: Calling function "unlink" that uses "file" after a check function. This can cause a time-of-check, time-of-use race condition. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:1637: toctou: Calling function "unlink" that uses "file" after a check function. This can cause a time-of-check, time-of-use race condition. |
| + | jsafranek: false positive |
| | | |
| Error: TOCTOU (CWE-367): | | Error: TOCTOU (CWE-367): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:1562: fs_check_call: Calling function "stat" to perform check on "file". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:1562: fs_check_call: Calling function "stat" to perform check on "file". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:1571: toctou: Calling function "rename" that uses "file" after a check function. This can cause a time-of-check, time-of-use race condition. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/read_config.c:1571: toctou: Calling function "rename" that uses "file" after a check function. This can cause a time-of-check, time-of-use race condition. |
| + | jsafranek: false positive |
| | | |
| Error: TOCTOU (CWE-367): | | Error: TOCTOU (CWE-367): |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:521: fs_check_call: Calling function "stat" to perform check on "path". | | /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:521: fs_check_call: Calling function "stat" to perform check on "path". |
| /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:535: toctou: Calling function "fopen" that uses "path" after a check function. This can cause a time-of-check, time-of-use race condition. | | /builddir/build/BUILD/net-snmp-5.7.1/apps/encode_keychange.c:535: toctou: Calling function "fopen" that uses "path" after a check function. This can cause a time-of-check, time-of-use race condition. |
| + | jsafranek: false positive |
| | | |
| Error: TOCTOU (CWE-367): | | Error: TOCTOU (CWE-367): |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:1349: fs_check_call: Calling function "stat" to perform check on "idxname". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:1349: fs_check_call: Calling function "stat" to perform check on "idxname". |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:1387: toctou: Calling function "fopen" that uses "idxname" after a check function. This can cause a time-of-check, time-of-use race condition. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/cert_util.c:1387: toctou: Calling function "fopen" that uses "idxname" after a check function. This can cause a time-of-check, time-of-use race condition. |
| + | jsafranek: false positive |
| </pre> | | </pre> |
| | | |
|
|
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:3641: var_decl: Declaring variable "import_list" without initializer. | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:3641: var_decl: Declaring variable "import_list" without initializer. |
| /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:3716: uninit_use: Using uninitialized value "import_list[i].modid". | | /builddir/build/BUILD/net-snmp-5.7.1/snmplib/parse.c:3716: uninit_use: Using uninitialized value "import_list[i].modid". |
Exception encountered, of type "Error"