Task #94 - c-ares-1.25.0-3.fc40/scan-results.err

back to task #94
download 
Error: CPPCHECK_WARNING (CWE-457):
c-ares-1.25.0/src/lib/ares__buf.c:1004: warning[uninitvar]: Uninitialized variable: status
# 1002|   
# 1003|   
# 1004|->   if (status != ARES_SUCCESS) {
# 1005|       ares__buf_destroy(binbuf);
# 1006|     } else {

Error: GCC_ANALYZER_WARNING (CWE-476):
c-ares-1.25.0/src/lib/ares_getnameinfo.c: scope_hint: In function ‘ares_getnameinfo_int’
c-ares-1.25.0/src/lib/ares_getnameinfo.c:175:9: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘addr’
#  173|         if (sa->sa_family == AF_INET) {
#  174|           niquery->family = AF_INET;
#  175|->         memcpy(&niquery->addr.addr4, addr, sizeof(niquery->addr.addr4));
#  176|           ares_gethostbyaddr(channel, &addr->sin_addr, sizeof(struct in_addr),
#  177|                              AF_INET, nameinfo_callback, niquery);

Error: GCC_ANALYZER_WARNING (CWE-688):
c-ares-1.25.0/src/lib/ares_getnameinfo.c:180:9: warning[-Wanalyzer-null-argument]: use of NULL ‘addr6’ where non-null expected
<built-in>: note: argument 2 of ‘__builtin_memcpy’ must be non-null
#  178|         } else {
#  179|           niquery->family = AF_INET6;
#  180|->         memcpy(&niquery->addr.addr6, addr6, sizeof(niquery->addr.addr6));
#  181|           ares_gethostbyaddr(channel, &addr6->sin6_addr,
#  182|                              sizeof(struct ares_in6_addr), AF_INET6,

Error: GCC_ANALYZER_WARNING (CWE-775):
c-ares-1.25.0/src/lib/ares_rand.c: scope_hint: In function ‘ares__rand_bytes_fetch’
c-ares-1.25.0/src/lib/ares_rand.c:296:14: warning[-Wanalyzer-file-leak]: leak of FILE ‘*state.state.rand_file’
c-ares-1.25.0/src/lib/ares_rand.c: scope_hint: In function ‘ares__rand_bytes_fetch’
c-ares-1.25.0/src/lib/ares_rand.c: scope_hint: In function ‘ares__rand_bytes_fetch’
c-ares-1.25.0/src/lib/ares_rand.c: scope_hint: In function ‘ares__rand_bytes_fetch’
#  294|             size_t rv = fread(buf + bytes_read, 1, len - bytes_read,
#  295|                               state->state.rand_file);
#  296|->           if (rv == 0) {
#  297|               break; /* critical error, will reinit rand state */
#  298|             }

Error: GCC_ANALYZER_WARNING (CWE-401):
c-ares-1.25.0/src/lib/ares_rand.c:296:14: warning[-Wanalyzer-malloc-leak]: leak of ‘*state.state.rand_file’
c-ares-1.25.0/src/lib/ares_rand.c: scope_hint: In function ‘ares__rand_bytes_fetch’
c-ares-1.25.0/src/lib/ares_rand.c: scope_hint: In function ‘ares__rand_bytes_fetch’
c-ares-1.25.0/src/lib/ares_rand.c: scope_hint: In function ‘ares__rand_bytes_fetch’
#  294|             size_t rv = fread(buf + bytes_read, 1, len - bytes_read,
#  295|                               state->state.rand_file);
#  296|->           if (rv == 0) {
#  297|               break; /* critical error, will reinit rand state */
#  298|             }