Codekhana

src/third_party/icu4c-57.1/source/common/rbbidata.h

1 issues

char - Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues

Security

Line: 129 Column: 5 CWE codes: 119 120
Suggestion: Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length

                  uint32_t         fRowLen;       /*  Length of a state table row, in bytes.            */
    uint32_t         fFlags;        /*  Option Flags for this state table                 */
    uint32_t         fReserved;     /*  reserved                                          */
    char             fTableData[4]; /*  First RBBIStateTableRow begins here.              */
                                    /*    (making it char[] simplifies ugly address       */
                                    /*     arithmetic for indexing variable length rows.) */
};

typedef enum {

Reported by FlawFinder.

src/third_party/icu4c-57.1/source/common/rbbirb.cpp

1 issues

getenv - Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once

Security

Line: 54 Column: 19 CWE codes: 807 20
Suggestion: Check environment variables carefully before using them

                  fParseError = parseErr;
    fDebugEnv   = NULL;
#ifdef RBBI_DEBUG
    fDebugEnv   = getenv("U_RBBIDEBUG");
#endif


    fForwardTree        = NULL;
    fReverseTree        = NULL;

Reported by FlawFinder.

src/third_party/icu4c-57.1/source/common/rbbirb.h

1 issues

printf - If format strings can be influenced by an attacker, they can be exploited

Security

Line: 200 Column: 25 CWE codes: 134
Suggestion: Use a constant for the format specification

              //----------------------------------------------------------------------------
#ifdef RBBI_DEBUG
#include <stdio.h>
#define RBBIDebugPrintf printf
#define RBBIDebugPuts puts
#else
#undef RBBIDebugPrintf 
#define RBBIDebugPuts(arg)
#endif

Reported by FlawFinder.

src/third_party/icu4c-57.1/source/common/servrbf.cpp

1 issues

char - Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues

Security

Line: 60 Column: 9 CWE codes: 119 120
Suggestion: Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length

                      // and should only contain invariant characters
                // ??? is it always true that the max length of the bundle name is 19?
                // who made this change? -- dlf
        char pkg[20];
        int32_t length;
        length=_bundleName.extract(0, INT32_MAX, pkg, (int32_t)sizeof(pkg), US_INV);
        if(length>=(int32_t)sizeof(pkg)) {
            return NULL;
        }

Reported by FlawFinder.

src/third_party/icu4c-57.1/source/common/ucat.c

1 issues

char - Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues

Security

Line: 52 Column: 5 CWE codes: 119 120
Suggestion: Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length

                        const UChar* s,
          int32_t* len, UErrorCode* ec) {

    char key[MAX_KEY_LEN];
    const UChar* result;

    if (ec == NULL || U_FAILURE(*ec)) {
        goto ERROR;
    }

Reported by FlawFinder.

src/third_party/boost/boost/random/fisher_f_distribution.hpp

1 issues

random - This function is not sufficiently random for security-related functions such as key and nonce creation

Security

Line: 24 Column: 11 CWE codes: 327
Suggestion: Use a more secure technique for acquiring random values

              #include <boost/random/chi_squared_distribution.hpp>

namespace boost {
namespace random {

/**
 * The Fisher F distribution is a real valued distribution with two
 * parameters m and n.
 *

Reported by FlawFinder.

src/third_party/boost/boost/random/faure.hpp

1 issues

random - This function is not sufficiently random for security-related functions such as key and nonce creation

Security

Line: 21 Column: 11 CWE codes: 327
Suggestion: Use a more secure technique for acquiring random values

              #include <boost/assert.hpp>

namespace boost {
namespace random {

/** @cond */
namespace detail {

namespace qrng_tables {

Reported by FlawFinder.

src/third_party/icu4c-57.1/source/common/ucnv_cnv.h

1 issues

open - Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents?

Security

Line: 236 Column: 20 CWE codes: 362

                  UConverterLoad load;
    UConverterUnload unload;

    UConverterOpen open;
    UConverterClose close;
    UConverterReset reset;

    UConverterToUnicode toUnicode;
    UConverterToUnicode toUnicodeWithOffsets;

Reported by FlawFinder.

src/third_party/boost/boost/asio/is_read_buffered.hpp

1 issues

char - Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues

Security

Line: 35 Column: 36 CWE codes: 119 120
Suggestion: Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length

              template <typename Stream>
char is_read_buffered_helper(buffered_read_stream<Stream>* s);

struct is_read_buffered_big_type { char data[10]; };
is_read_buffered_big_type is_read_buffered_helper(...);

} // namespace detail

/// The is_read_buffered class is a traits class that may be used to determine

Reported by FlawFinder.

src/third_party/icu4c-57.1/source/common/ucnvisci.c

1 issues

char - Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues

Security

Line: 130 Column: 5 CWE codes: 119 120
Suggestion: Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length

                  MaskEnum defMaskToUnicode;          /* mask for default state in toUnicode */
    UBool isFirstBuffer;                /* boolean for fromUnicode to see if we need to announce the first script */
    UBool resetToDefaultToUnicode;      /* boolean for reseting to default delta and mask when a newline is encountered*/
    char name[sizeof(ISCII_CNV_PREFIX) + 1];
    UChar32 prevToUnicodeStatus;        /* Hold the previous toUnicodeStatus. This is necessary because we may need to know the last two code points. */
} UConverterDataISCII;

typedef struct LookupDataStruct {
    UniLang uniLang;

Reported by FlawFinder.

Modal title

The following issues were found

src/third_party/icu4c-57.1/source/common/rbbidata.h

1 issues

src/third_party/icu4c-57.1/source/common/rbbirb.cpp

1 issues

src/third_party/icu4c-57.1/source/common/rbbirb.h

1 issues

src/third_party/icu4c-57.1/source/common/servrbf.cpp

1 issues

src/third_party/icu4c-57.1/source/common/ucat.c

1 issues

src/third_party/boost/boost/random/fisher_f_distribution.hpp

1 issues

src/third_party/boost/boost/random/faure.hpp

1 issues

src/third_party/icu4c-57.1/source/common/ucnv_cnv.h

1 issues

src/third_party/boost/boost/asio/is_read_buffered.hpp

1 issues

src/third_party/icu4c-57.1/source/common/ucnvisci.c

1 issues