The following issues were found
Modules/_sqlite/statement.c
1 issues
Line: 69
Column: 9
CWE codes:
126
"query string is too large");
return NULL;
}
if (strlen(sql_cstr) != (size_t)size) {
PyErr_SetString(PyExc_ValueError,
"the query contains a null character");
return NULL;
}
Reported by FlawFinder.
Modules/_dbmmodule.c
1 issues
Line: 487
Column: 9
CWE codes:
126
return NULL;
}
const char *name = PyBytes_AS_STRING(filenamebytes);
if (strlen(name) != (size_t)PyBytes_GET_SIZE(filenamebytes)) {
Py_DECREF(filenamebytes);
PyErr_SetString(PyExc_ValueError, "embedded null character");
return NULL;
}
PyObject *self = newdbmobject(state, name, iflags, mode);
Reported by FlawFinder.
Objects/tupleobject.c
1 issues
Line: 35
Column: 9
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
#if PyTuple_MAXSAVESIZE > 0
struct _Py_tuple_state *state = get_tuple_state();
for (int i = 1; i < PyTuple_MAXSAVESIZE; i++) {
char buf[128];
PyOS_snprintf(buf, sizeof(buf),
"free %d-sized PyTupleObject", i);
_PyDebugAllocatorStats(out, buf, state->numfree[i],
_PyObject_VAR_SIZE(&PyTuple_Type, i));
}
Reported by FlawFinder.
Modules/_sqlite/clinic/module.c.h
1 issues
Line: 151
Column: 9
CWE codes:
126
if (statement == NULL) {
goto exit;
}
if (strlen(statement) != (size_t)statement_length) {
PyErr_SetString(PyExc_ValueError, "embedded null character");
goto exit;
}
return_value = pysqlite_complete_statement_impl(module, statement);
Reported by FlawFinder.
Modules/_sqlite/clinic/cursor.c.h
1 issues
Line: 141
Column: 9
CWE codes:
126
if (sql_script == NULL) {
goto exit;
}
if (strlen(sql_script) != (size_t)sql_script_length) {
PyErr_SetString(PyExc_ValueError, "embedded null character");
goto exit;
}
return_value = pysqlite_cursor_executescript_impl(self, sql_script);
Reported by FlawFinder.
Modules/_uuidmodule.c
1 issues
Line: 35
Column: 14
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
uint32_t status;
uuid_create(&uuid, &status);
# if defined(HAVE_UUID_ENC_BE)
unsigned char buf[sizeof(uuid)];
uuid_enc_be(buf, &uuid);
return Py_BuildValue("y#i", buf, sizeof(uuid), (int) status);
# else
return Py_BuildValue("y#i", (const char *) &uuid, sizeof(uuid), (int) status);
# endif /* HAVE_UUID_CREATE */
Reported by FlawFinder.
Modules/_sha3/kcp/KeccakSponge.h
1 issues
Line: 135
Column: 18
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
#define KCP_DeclareSpongeStructure(prefix, size, alignment) \
ALIGN(alignment) typedef struct prefix##_SpongeInstanceStruct { \
unsigned char state[size]; \
unsigned int rate; \
unsigned int byteIOIndex; \
int squeezing; \
} prefix##_SpongeInstance;
Reported by FlawFinder.
Lib/test/test_zoneinfo/__main__.py
1 issues
Line: 1
Column: 1
import unittest
unittest.main('test.test_zoneinfo')
Reported by Pylint.
Tools/c-analyzer/c_common/__init__.py
1 issues
Line: 1
Column: 1
NOT_SET = object()
Reported by Pylint.
Modules/_sha3/kcp/KeccakHash.c
1 issues
Line: 54
Column: 26
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
instance->delimitedSuffix = delimitedLastBytes & 0xFF;
}
else {
unsigned char oneByte[1];
oneByte[0] = delimitedLastBytes & 0xFF;
ret = (HashReturn)KeccakWidth1600_SpongeAbsorb(&instance->sponge, oneByte, 1);
instance->delimitedSuffix = (delimitedLastBytes >> 8) & 0xFF;
}
}
Reported by FlawFinder.