gnome-kiosk-48.0-3.fc43

List of Findings

Error: GCC_ANALYZER_WARNING (CWE-688): [#def1]
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-dbus-utils.c:51:32: warning[-Wanalyzer-null-argument]: use of NULL where non-null expected
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-dbus-utils.c:42:1: enter_function: entry to ‘dashed_string_to_studly_caps’
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-dbus-utils.c:51:32: danger: argument 1 (‘<unknown>’) NULL where non-null expected
#argument 1 of ‘__builtin_strlen’ must be non-null
#   49|   
#   50|           studly_string = g_strdup (dashed_string);
#   51|->         studly_string_length = strlen (studly_string);
#   52|   
#   53|           studly_string[i] = g_ascii_toupper (studly_string[i]);

Error: GCC_ANALYZER_WARNING (CWE-126): [#def2]
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-shell-introspect-service.c:619:21: warning[-Wanalyzer-out-of-bounds]: buffer over-read
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-shell-introspect-service.c:632:1: enter_function: entry to ‘kiosk_shell_introspect_service_start’
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-shell-introspect-service.c:635:9: branch_true: following ‘true’ branch...
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-shell-introspect-service.c:637:9: branch_true: ...to here
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-shell-introspect-service.c:647:9: call_function: calling ‘setup_bus_watcher’ from ‘kiosk_shell_introspect_service_start’
#  617|           int i;
#  618|   
#  619|->         for (i = 0; allowed_app_list[i].name; i++) {
#  620|                   allowed_app_list[i].watcher_id =
#  621|                           g_bus_watch_name (G_BUS_TYPE_SESSION,

Error: GCC_ANALYZER_WARNING (CWE-787): [#def3]
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-shell-introspect-service.c:620:17: warning[-Wanalyzer-out-of-bounds]: buffer overflow
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-shell-introspect-service.c:632:1: enter_function: entry to ‘kiosk_shell_introspect_service_start’
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-shell-introspect-service.c:635:9: branch_true: following ‘true’ branch...
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-shell-introspect-service.c:637:9: branch_true: ...to here
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-shell-introspect-service.c:647:9: call_function: calling ‘setup_bus_watcher’ from ‘kiosk_shell_introspect_service_start’
#  618|   
#  619|           for (i = 0; allowed_app_list[i].name; i++) {
#  620|->                 allowed_app_list[i].watcher_id =
#  621|                           g_bus_watch_name (G_BUS_TYPE_SESSION,
#  622|                                             allowed_app_list[i].name,

Error: GCC_ANALYZER_WARNING (CWE-688): [#def4]
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-x-keyboard-manager.c:307:39: warning[-Wanalyzer-null-argument]: use of NULL ‘layouts_string’ where non-null expected
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-x-keyboard-manager.c:388:1: enter_function: entry to ‘kiosk_x_keyboard_manager_handle_x_server_property_notify’
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-x-keyboard-manager.c:391:12: branch_false: following ‘false’ branch...
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-x-keyboard-manager.c:395:13: branch_false: ...to here
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-x-keyboard-manager.c:395:12: branch_false: following ‘false’ branch...
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-x-keyboard-manager.c:399:9: branch_false: ...to here
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-x-keyboard-manager.c:400:9: call_function: calling ‘kiosk_x_keyboard_manager_read_xkb_rules_names_data’ from ‘kiosk_x_keyboard_manager_handle_x_server_property_notify’
#argument 1 of ‘__builtin_strlen’ must be non-null
#  305|           for (i = 0; i < number_of_bytes_read; i++) {
#  306|                   g_autofree char *value = g_strdup ((char *) property_values + i);
#  307|->                 size_t value_length = strlen (value);
#  308|   
#  309|                   switch (property_value_index) {

Error: GCC_ANALYZER_WARNING (CWE-688): [#def5]
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-x-keyboard-manager.c:307:39: warning[-Wanalyzer-null-argument]: use of NULL ‘variants_string’ where non-null expected
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-x-keyboard-manager.c:388:1: enter_function: entry to ‘kiosk_x_keyboard_manager_handle_x_server_property_notify’
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-x-keyboard-manager.c:391:12: branch_false: following ‘false’ branch...
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-x-keyboard-manager.c:395:13: branch_false: ...to here
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-x-keyboard-manager.c:395:12: branch_false: following ‘false’ branch...
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-x-keyboard-manager.c:399:9: branch_false: ...to here
gnome-kiosk-48.0/redhat-linux-build/../compositor/kiosk-x-keyboard-manager.c:400:9: call_function: calling ‘kiosk_x_keyboard_manager_read_xkb_rules_names_data’ from ‘kiosk_x_keyboard_manager_handle_x_server_property_notify’
#argument 1 of ‘__builtin_strlen’ must be non-null
#  305|           for (i = 0; i < number_of_bytes_read; i++) {
#  306|                   g_autofree char *value = g_strdup ((char *) property_values + i);
#  307|->                 size_t value_length = strlen (value);
#  308|   
#  309|                   switch (property_value_index) {

Scan Properties