Newly introduced findings

List of Findings

Error: GCC_ANALYZER_WARNING (CWE-122): [#def1]
openscap-1.4.5/src/OVAL/probes/unix/xinetd_probe.c:41: included_from: Included from here.
openscap-1.4.5/src/OVAL/probes/unix/xinetd_probe.c: scope_hint: In function ‘xiconf_parse_section’
openscap-1.4.5/src/OVAL/probes/unix/xinetd_probe.c:1172:36: warning[-Wanalyzer-out-of-bounds]: heap-based buffer over-read
openscap-1.4.5/src/OVAL/probes/unix/xinetd_probe.c:828:34: note: in expansion of macro ‘tmpbuf_get’
openscap-1.4.5/src/OVAL/probes/unix/xinetd_probe.c:828:34: note: in expansion of macro ‘tmpbuf_get’
# 1170|   	 * at the end are allowed here.
# 1171|   	 */
# 1172|-> 	while(isspace(xifile->inmem[xifile->inoff]))
# 1173|   		++xifile->inoff;
# 1174|   	if (xifile->inmem[xifile->inoff] != '{')

Scan Properties

analyzer-version-clippy1.96.0
analyzer-version-cppcheck2.21.0
analyzer-version-gcc16.1.1
analyzer-version-gcc-analyzer16.1.1
analyzer-version-shellcheck0.11.0
analyzer-version-unicontrol0.0.2
diffbase-analyzer-version-clippy1.96.0
diffbase-analyzer-version-cppcheck2.21.0
diffbase-analyzer-version-gcc16.1.1
diffbase-analyzer-version-gcc-analyzer16.1.1
diffbase-analyzer-version-shellcheck0.11.0
diffbase-analyzer-version-unicontrol0.0.2
diffbase-enabled-pluginsclippy, cppcheck, gcc, shellcheck, unicontrol
diffbase-exit-code0
diffbase-hostip-172-16-1-250.us-west-2.compute.internal
diffbase-known-false-positives/usr/share/csmock/known-false-positives.js
diffbase-known-false-positives-rpmknown-false-positives-0.0.0.20260524.213755.g3c6d0be.main-1.el9.noarch
diffbase-mock-configfedora-rawhide-x86_64
diffbase-project-nameopenscap-1.4.5-0.20260616094721150796.main.77.ge3c30f292
diffbase-store-results-to/tmp/tmpv6b8uyhp/openscap-1.4.5-0.20260616094721150796.main.77.ge3c30f292.tar.xz
diffbase-time-created2026-06-19 16:46:47
diffbase-time-finished2026-06-19 16:53:23
diffbase-toolcsmock
diffbase-tool-args'/usr/bin/csmock' '-r' 'fedora-rawhide-x86_64' '-t' 'unicontrol,shellcheck,gcc,clippy,cppcheck' '-o' '/tmp/tmpv6b8uyhp/openscap-1.4.5-0.20260616094721150796.main.77.ge3c30f292.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '/tmp/tmpv6b8uyhp/openscap-1.4.5-0.20260616094721150796.main.77.ge3c30f292.src.rpm'
diffbase-tool-versioncsmock-3.8.6.20260619.162144.gb9cd2d0-1.el9
enabled-pluginsclippy, cppcheck, gcc, shellcheck, unicontrol
exit-code0
hostip-172-16-1-250.us-west-2.compute.internal
known-false-positives/usr/share/csmock/known-false-positives.js
known-false-positives-rpmknown-false-positives-0.0.0.20260524.213755.g3c6d0be.main-1.el9.noarch
mock-configfedora-rawhide-x86_64
project-nameopenscap-1.4.5-0.20260619163636295415.pr2371.79.gc7978fd81
store-results-to/tmp/tmpv4ab_vd0/openscap-1.4.5-0.20260619163636295415.pr2371.79.gc7978fd81.tar.xz
time-created2026-06-19 16:53:42
time-finished2026-06-19 16:59:17
titleNewly introduced findings
toolcsmock
tool-args'/usr/bin/csmock' '-r' 'fedora-rawhide-x86_64' '-t' 'unicontrol,shellcheck,gcc,clippy,cppcheck' '-o' '/tmp/tmpv4ab_vd0/openscap-1.4.5-0.20260619163636295415.pr2371.79.gc7978fd81.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '/tmp/tmpv4ab_vd0/openscap-1.4.5-0.20260619163636295415.pr2371.79.gc7978fd81.src.rpm'
tool-versioncsmock-3.8.6.20260619.162144.gb9cd2d0-1.el9