cppcheck analysis of ifmail_2.14tx8.10-20.dsc
- ./ifcico/chat.c:99 [error] - Dangerous usage of 'buf' (strncpy doesn't always 0-terminate it)
- ./ifcico/nlookup.c:139 [error] - Undefined behaviour: buf is used wrong in call to sprintf or snprintf. Quote: If copying takes place between objects that overlap as a result of a call to sprintf() or snprintf(), the results are undefined.
- ./ifcico/openport.c:234 [error] - Resource leak: fd
- ./ifcico/openport.c:160 [error] - fflush() called on input stream "stdin" may result in undefined behaviour
- ./ifcico/openport.c:331 [error] - fflush() called on input stream "stdin" may result in undefined behaviour
- ./ifcico/opentcp.c:109 [error] - fflush() called on input stream "stdin" may result in undefined behaviour
- ./ifcico/openterm.c:27 [error] - fflush() called on input stream "stdin" may result in undefined behaviour
- ./ifcico/respfreq.c:414 [error] - Resource leak: reqlist
- ./ifgate/ifunpack.c:227 [error] - Dangerous usage of 'tmpfile' (strncpy doesn't always 0-terminate it)
- ./ifgate/unpacker.c:24 [error] - Resource leak: fp
- ./iflib/execsh.c:26 [error] - Allocation with open, if doesn't release it.
- ./iflib/execute.c:61 [error] - Allocation with open, if doesn't release it.
- ./iflib/packet.c:206 [error] - Invalid number of character (() when these macros are defined: 'PKT_2_2'.
- ./misc/contrib/areafix-0.5.07/areaqueue.c:27 [error] - Buffer overrun possible for long cmd-line args
- ./misc/contrib/areafix-0.5.07/areaqueue.c:29 [error] - Undefined behaviour: s1 is used wrong in call to sprintf or snprintf. Quote: If copying takes place between objects that overlap as a result of a call to sprintf() or snprintf(), the results are undefined.
- ./misc/contrib/cutnl-0.1/cutnl.cc:125 [error] - Memory leak: zone_to_cut
- ./misc/contrib/cutnl-0.1/cutnl.cc:125 [error] - Memory leak: region_to_cut
- ./misc/contrib/u-tic/queuemail.c:28 [error] - Buffer overrun possible for long cmd-line args
- ./misc/contrib/u-tic/queuemail.c:30 [error] - Undefined behaviour: s1 is used wrong in call to sprintf or snprintf. Quote: If copying takes place between objects that overlap as a result of a call to sprintf() or snprintf(), the results are undefined.
Note: if you think the results reveal a security bug,
please don't hesitate to contact the
security team
This report was generated on Mon, 20 Dec 2010 21:14:51 +0000, based on results by cppcheck 1.46
Automated Code Analysis