gstreamer1-plugins-base-1.26.0-1.fc43

List of Findings

Error: CPPCHECK_WARNING (CWE-682): [#def1]
gst-plugins-base-1.26.0/ext/gl/gstgldifferencematte.c:571: error[nullPointerArithmeticOutOfMemory]: If memory allocation fail: pointer addition with NULL pointer.
#  569|   
#  570|     for (y = 0; y < height; ++y)
#  571|->     rows[y] = (guchar *) (differencematte->pixbuf + y * width * 4);
#  572|   
#  573|     png_read_image (png_ptr, rows);

Error: CPPCHECK_WARNING (CWE-476): [#def2]
gst-plugins-base-1.26.0/ext/gl/gstgldifferencematte.c:571: warning[nullPointerOutOfMemory]: If memory allocation fails, then there is a possible null pointer dereference: rows
#  569|   
#  570|     for (y = 0; y < height; ++y)
#  571|->     rows[y] = (guchar *) (differencematte->pixbuf + y * width * 4);
#  572|   
#  573|     png_read_image (png_ptr, rows);

Error: CPPCHECK_WARNING (CWE-476): [#def3]
gst-plugins-base-1.26.0/ext/gl/gstgloverlay.c:838: warning[nullPointerOutOfMemory]: If memory allocation fails, then there is a possible null pointer dereference: rows
#  836|   
#  837|     for (y = 0; y < height; ++y)
#  838|->     rows[y] = (guchar *) (map_info.data + y * width * 4);
#  839|   
#  840|     png_read_image (png_ptr, rows);

Error: CPPCHECK_WARNING (CWE-457): [#def4]
gst-plugins-base-1.26.0/ext/theora/gsttheoraenc.c:996: error[legacyUninitvar]: Uninitialized variable: ycbcr
#  994|       gst_video_frame_map (&vframe, &enc->input_state->info, frame->input_buffer,
#  995|           GST_MAP_READ);
#  996|->     theora_enc_init_buffer (ycbcr, &vframe);
#  997|   
#  998|       res = th_encode_ycbcr_in (enc->encoder, ycbcr);

Error: CPPCHECK_WARNING (CWE-457): [#def5]
gst-plugins-base-1.26.0/ext/vorbis/gstvorbisdec.c:214: warning[uninitvar]: Uninitialized variable: position
#  212|           position[i] = GST_AUDIO_CHANNEL_POSITION_NONE;
#  213|         gst_audio_info_set_format (&info, GST_VORBIS_AUDIO_FORMAT, vd->vi.rate,
#  214|->           vd->vi.channels, position);
#  215|         break;
#  216|       }

Error: CPPCHECK_WARNING (CWE-457): [#def6]
gst-plugins-base-1.26.0/gst-libs/gst/audio/audio-converter.c:841: error[legacyUninitvar]: Uninitialized variable: coefficient
#  839|           g_assert_not_reached ();
#  840|   
#  841|->       matrix[i][j] = coefficient;
#  842|       }
#  843|     }

Error: CPPCHECK_WARNING (CWE-457): [#def7]
gst-plugins-base-1.26.0/gst-libs/gst/gl/gstglframebuffer.c:389: error[legacyUninitvar]: Uninitialized variable: width
#  387|       }
#  388|   
#  389|->     if (width < min_width)
#  390|         min_width = width;
#  391|       if (height < min_height)

Error: CPPCHECK_WARNING (CWE-457): [#def8]
gst-plugins-base-1.26.0/gst-libs/gst/gl/gstglframebuffer.c:391: error[legacyUninitvar]: Uninitialized variable: height
#  389|       if (width < min_width)
#  390|         min_width = width;
#  391|->     if (height < min_height)
#  392|         min_height = height;
#  393|     }

Error: CPPCHECK_WARNING (CWE-457): [#def9]
gst-plugins-base-1.26.0/gst-libs/gst/pbutils/gstdiscoverer.c:2279: error[legacyUninitvar]: Uninitialized variable: *&maybe
# 2277|     const gchar *ret = NULL;
# 2278|     GVariant *maybe;
# 2279|->   GET_FROM_TUPLE (tuple, maybe, index, &maybe);
# 2280|     if (maybe) {
# 2281|       ret = g_variant_get_string (maybe, NULL);

Error: CPPCHECK_WARNING (CWE-457): [#def10]
gst-plugins-base-1.26.0/gst-libs/gst/pbutils/gstdiscoverer.c:2332: error[legacyUninitvar]: Uninitialized variable: *&nextv
# 2330|       GVariant *nextv;
# 2331|   
# 2332|->     GET_FROM_TUPLE (common, variant, 4, &nextv);
# 2333|       if (g_variant_n_children (nextv) > 0) {
# 2334|         sinfo->next = _parse_discovery (nextv, info);

Error: CPPCHECK_WARNING (CWE-457): [#def11]
gst-plugins-base-1.26.0/gst-libs/gst/pbutils/gstdiscoverer.c:2772: error[legacyUninitvar]: Uninitialized variable: *&info_specific_variant
# 2770|     GVariant *wrapped;
# 2771|   
# 2772|->   GET_FROM_TUPLE (info_variant, variant, 0, &info_specific_variant);
# 2773|     GET_FROM_TUPLE (info_variant, variant, 1, &wrapped);
# 2774|   

Error: CPPCHECK_WARNING (CWE-457): [#def12]
gst-plugins-base-1.26.0/gst-libs/gst/pbutils/gstdiscoverer.c:2773: error[legacyUninitvar]: Uninitialized variable: *&wrapped
# 2771|   
# 2772|     GET_FROM_TUPLE (info_variant, variant, 0, &info_specific_variant);
# 2773|->   GET_FROM_TUPLE (info_variant, variant, 1, &wrapped);
# 2774|   
# 2775|     _parse_info (info, info_specific_variant);

Error: CPPCHECK_WARNING (CWE-457): [#def13]
gst-plugins-base-1.26.0/gst-libs/gst/rtsp/gstrtspconnection.c:2339: warning[uninitvar]: Uninitialized variable: rversion
# 2337|   
# 2338|     if (res == GST_RTSP_OK)
# 2339|->     *version = rversion;
# 2340|   
# 2341|     return res;

Error: CPPCHECK_WARNING (CWE-476): [#def14]
gst-plugins-base-1.26.0/gst-libs/gst/tag/gstexiftag.c:1451: warning[nullPointerOutOfMemory]: If memory allocation fails, then there is a possible null pointer dereference: data
# 1449|       /* +1 because it could be a string without the \0 */
# 1450|       data = malloc (alloc_size);
# 1451|->     memcpy (data, info.data + real_offset, count);
# 1452|       data[count] = 0;
# 1453|   

Error: CPPCHECK_WARNING (CWE-476): [#def15]
gst-plugins-base-1.26.0/gst-libs/gst/tag/gstexiftag.c:1452: warning[nullPointerOutOfMemory]: If memory allocation fails, then there is a possible null pointer dereference: data
# 1450|       data = malloc (alloc_size);
# 1451|       memcpy (data, info.data + real_offset, count);
# 1452|->     data[count] = 0;
# 1453|   
# 1454|       gst_buffer_unmap (reader->buffer, &info);

Error: CPPCHECK_WARNING (CWE-476): [#def16]
gst-plugins-base-1.26.0/gst-libs/gst/tag/gstexiftag.c:1457: warning[nullPointerOutOfMemory]: If memory allocation fails, then there is a possible null pointer dereference: data
# 1455|     } else {
# 1456|       data = malloc (count + 1);
# 1457|->     memcpy (data, (guint8 *) offset_as_data, count);
# 1458|       data[count] = 0;
# 1459|     }

Error: CPPCHECK_WARNING (CWE-476): [#def17]
gst-plugins-base-1.26.0/gst-libs/gst/tag/gstexiftag.c:1458: warning[nullPointerOutOfMemory]: If memory allocation fails, then there is a possible null pointer dereference: data
# 1456|       data = malloc (count + 1);
# 1457|       memcpy (data, (guint8 *) offset_as_data, count);
# 1458|->     data[count] = 0;
# 1459|     }
# 1460|   

Error: CPPCHECK_WARNING (CWE-823): [#def18]
gst-plugins-base-1.26.0/gst-libs/gst/tag/mklicensestables.c:208: error[arrayIndexOutOfBounds]: Array 'tag_map[18]' accessed at index 18, which is out of bounds.
#  206|       g_error ("Unexpected tag '%s'\n", element_name);
#  207|   
#  208|->   if (tag_map[i].attribute == NULL)
#  209|       return;
#  210|   

Error: CPPCHECK_WARNING (CWE-823): [#def19]
gst-plugins-base-1.26.0/gst-libs/gst/tag/mklicensestables.c:212: error[arrayIndexOutOfBounds]: Array 'tag_map[18]' accessed at index 18, which is out of bounds.
#  210|   
#  211|     if (!g_markup_collect_attributes (element_name, attr_names, attr_vals,
#  212|->           err, G_MARKUP_COLLECT_STRING, tag_map[i].attribute, &ref,
#  213|             G_MARKUP_COLLECT_INVALID)) {
#  214|       return;

Error: CPPCHECK_WARNING (CWE-823): [#def20]
gst-plugins-base-1.26.0/gst-libs/gst/tag/mklicensestables.c:330: error[arrayIndexOutOfBounds]: Array 'tag_map[18]' accessed at index 18, which is out of bounds.
#  328|       g_error ("Unexpected tag '%s'\n", element_name);
#  329|   
#  330|->   switch (tag_map[i].element_tag) {
#  331|       case TAG_CC_LICENSE:
#  332|       case TAG_CC_JURISDICTION:

Error: CPPCHECK_WARNING (CWE-476): [#def21]
gst-plugins-base-1.26.0/gst-libs/gst/tag/mklicensestables.c:696: warning[nullPointerOutOfResources]: If resource allocation fails, then there is a possible null pointer dereference: f
#  694|   
#  695|     f = fopen (dict_filename, "wb");
#  696|->   if (fwrite (g_variant_get_data (var), g_variant_get_size (var), 1, f) != 1) {
#  697|       g_error ("failed to write dict to file: %s", g_strerror (errno));
#  698|     }

Error: CPPCHECK_WARNING (CWE-476): [#def22]
gst-plugins-base-1.26.0/gst/playback/gstplaysink.c:1728: warning[nullPointer]: Possible null pointer dereference: channel
# 1726|       /* Convert to channel range */
# 1727|       new_val =
# 1728|->         channel->min_value + new_val * ((gdouble) channel->max_value -
# 1729|           (gdouble) channel->min_value);
# 1730|   

Error: CPPCHECK_WARNING (CWE-476): [#def23]
gst-plugins-base-1.26.0/gst/playback/gstplaysink.c:1729: warning[nullPointer]: Possible null pointer dereference: channel
# 1727|       new_val =
# 1728|           channel->min_value + new_val * ((gdouble) channel->max_value -
# 1729|->         (gdouble) channel->min_value);
# 1730|   
# 1731|       gst_color_balance_set_value (balance, channel, (gint) (new_val + 0.5));

Error: CPPCHECK_WARNING (CWE-476): [#def24]
gst-plugins-base-1.26.0/gst/playback/gstplaysink.c:5533: warning[nullPointer]: Possible null pointer dereference: channel
# 5531|         /* Convert to channel range */
# 5532|         new_val =
# 5533|->           channel->min_value + new_val * ((gdouble) channel->max_value -
# 5534|             (gdouble) channel->min_value);
# 5535|   

Error: CPPCHECK_WARNING (CWE-476): [#def25]
gst-plugins-base-1.26.0/gst/playback/gstplaysink.c:5534: warning[nullPointer]: Possible null pointer dereference: channel
# 5532|         new_val =
# 5533|             channel->min_value + new_val * ((gdouble) channel->max_value -
# 5534|->           (gdouble) channel->min_value);
# 5535|   
# 5536|         gst_color_balance_set_value (balance_element, channel,

Error: CPPCHECK_WARNING (CWE-476): [#def26]
gst-plugins-base-1.26.0/gst/playback/gstsubtitleoverlay.c:568: warning[nullPointer]: Possible null pointer dereference: (struct GstObject*)((struct GstPluginFeature*)(factory))
#  566|     } else {
#  567|       factory_name =
#  568|->         gst_plugin_feature_get_name (GST_PLUGIN_FEATURE_CAST (factory));
#  569|       elt = gst_element_factory_create (factory, element_name);
#  570|     }

Error: CPPCHECK_WARNING (CWE-758): [#def27]
gst-plugins-base-1.26.0/gst/typefind/gsttypefindfunctions.c:6809: error[shiftTooManyBits]: Shifting 32-bit value by 49 bits is undefined behaviour
# 6807|     for (i = 0; i < 8; i++) {
# 6808|       leb128_byte = data[i];
# 6809|->     value |= (((gint) leb128_byte & 0x7f) << (i * 7));
# 6810|       if (!(leb128_byte & 0x80))
# 6811|         break;

Error: GCC_ANALYZER_WARNING (CWE-476): [#def28]
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgldifferencematte.c:571:5: warning[-Wanalyzer-possible-null-dereference]: dereference of possibly-NULL ‘rows’
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgldifferencematte.c:519:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgldifferencematte.c:522:20: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgldifferencematte.c:522:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgldifferencematte.c:525:13: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgldifferencematte.c:527:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgldifferencematte.c:532:3: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgldifferencematte.c:535:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgldifferencematte.c:541:3: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgldifferencematte.c:556:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgldifferencematte.c:562:3: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgldifferencematte.c:568:22: acquire_memory: this call could return NULL
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgldifferencematte.c:570:15: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgldifferencematte.c:571:53: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgldifferencematte.c:571:5: danger: ‘rows + (long unsigned int)y * 8’ could be NULL: unchecked value from [(11)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/10)
#  569|   
#  570|     for (y = 0; y < height; ++y)
#  571|->     rows[y] = (guchar *) (differencematte->pixbuf + y * width * 4);
#  572|   
#  573|     png_read_image (png_ptr, rows);

Error: GCC_ANALYZER_WARNING (CWE-476): [#def29]
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:838:5: warning[-Wanalyzer-possible-null-dereference]: dereference of possibly-NULL ‘rows’
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:752:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:756:12: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:757:6: branch_false: following ‘false’ branch (when ‘n_read == 8’)...
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:764:7: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:764:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:770:13: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:772:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:779:3: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:782:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:790:3: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:805:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:812:3: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:828:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:835:22: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:835:22: acquire_memory: this call could return NULL
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:837:15: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:838:27: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../ext/gl/gstgloverlay.c:838:5: danger: ‘rows + (long unsigned int)y * 8’ could be NULL: unchecked value from [(15)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/14)
#  836|   
#  837|     for (y = 0; y < height; ++y)
#  838|->     rows[y] = (guchar *) (map_info.data + y * width * 4);
#  839|   
#  840|     png_read_image (png_ptr, rows);

Error: GCC_ANALYZER_WARNING (CWE-688): [#def30]
gst-plugins-base-1.26.0/redhat-linux-build/../ext/ogg/gstoggstream.c:2680:9: warning[-Wanalyzer-null-argument]: use of NULL where non-null expected
gst-plugins-base-1.26.0/redhat-linux-build/../ext/ogg/gstoggstream.c:2677:15: branch_true: following ‘true’ branch (when ‘i != 20’)...
gst-plugins-base-1.26.0/redhat-linux-build/../ext/ogg/gstoggstream.c:2678:9: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../ext/ogg/gstoggstream.c:2678:8: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../ext/ogg/gstoggstream.c:2679:26: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../ext/ogg/gstoggstream.c:2678:9: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../ext/ogg/gstoggstream.c:2680:9: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../ext/ogg/gstoggstream.c:2680:33: release_memory: ‘0’ is NULL
gst-plugins-base-1.26.0/redhat-linux-build/../ext/ogg/gstoggstream.c:2680:9: danger: argument 2 (‘mappers[i].id’) NULL where non-null expected
# 2678|       if (packet->bytes >= mappers[i].min_packet_size &&
# 2679|           packet->bytes >= mappers[i].id_length &&
# 2680|->         memcmp (packet->packet, mappers[i].id, mappers[i].id_length) == 0) {
# 2681|   
# 2682|         GST_DEBUG ("found mapper for '%s'", mappers[i].id);

Error: GCC_ANALYZER_WARNING (CWE-476): [#def31]
gst-plugins-base-1.26.0/redhat-linux-build/../ext/theora/gsttheoradec.c:682:7: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘frame’
gst-plugins-base-1.26.0/redhat-linux-build/../ext/theora/gsttheoradec.c:849:1: enter_function: entry to ‘theora_dec_handle_frame’
gst-plugins-base-1.26.0/redhat-linux-build/../ext/theora/gsttheoradec.c:856:9: call_function: calling ‘theora_dec_decode_buffer’ from ‘theora_dec_handle_frame’
#  680|         "doing unavoidable video frame copy");
#  681|   
#  682|->   if (G_UNLIKELY (!gst_video_frame_map (&vframe, &dec->output_state->info,
#  683|                 frame->output_buffer, GST_MAP_WRITE)))
#  684|       goto invalid_frame;

Error: GCC_ANALYZER_WARNING (CWE-131): [#def32]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/audio/audio-resampler.c:1012:3: warning[-Wanalyzer-allocation-size]: allocated buffer size is not a multiple of the pointee's size
# 1010|     resampler->cached_taps =
# 1011|         MEM_ALIGN ((gint8 *) resampler->cached_taps_mem + phases_size, ALIGN);
# 1012|->   resampler->cached_phases = resampler->cached_taps_mem;
# 1013|   }
# 1014|   

Error: GCC_ANALYZER_WARNING (CWE-476): [#def33]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/pbutils/gstdiscoverer-types.c:127:5: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/pbutils/gstdiscoverer-types.c:414:1: enter_function: entry to ‘gst_discoverer_info_copy’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/pbutils/gstdiscoverer-types.c:420:3: branch_true: following ‘true’ branch (when ‘ptr’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/pbutils/gstdiscoverer-types.c:422:16: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/pbutils/gstdiscoverer-types.c:427:6: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/pbutils/gstdiscoverer-types.c:428:24: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/pbutils/gstdiscoverer-types.c:428:24: call_function: calling ‘gst_discoverer_info_copy_int’ from ‘gst_discoverer_info_copy’
#  125|     if (info->next) {
#  126|       ret->next = gst_discoverer_info_copy_int (info->next, stream_map);
#  127|->     ret->next->previous = ret;
#  128|     }
#  129|   

Error: GCC_ANALYZER_WARNING (CWE-121): [#def34]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:2208:7: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5332:1: enter_function: entry to ‘gst_rtsp_connection_send_messages’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5335:10: call_function: calling ‘gst_rtsp_connection_send_messages_usec’ from ‘gst_rtsp_connection_send_messages’
# 2206|   
# 2207|       if (serialized_messages[i].body_data) {
# 2208|->       vectors[j].buffer = serialized_messages[i].body_data;
# 2209|         vectors[j].size = serialized_messages[i].body_data_size;
# 2210|         bytes_to_write += vectors[j].size;

Error: GCC_ANALYZER_WARNING (CWE-121): [#def35]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:2209:7: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5332:1: enter_function: entry to ‘gst_rtsp_connection_send_messages’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5335:10: call_function: calling ‘gst_rtsp_connection_send_messages_usec’ from ‘gst_rtsp_connection_send_messages’
# 2207|       if (serialized_messages[i].body_data) {
# 2208|         vectors[j].buffer = serialized_messages[i].body_data;
# 2209|->       vectors[j].size = serialized_messages[i].body_data_size;
# 2210|         bytes_to_write += vectors[j].size;
# 2211|         j++;

Error: GCC_ANALYZER_WARNING (CWE-476): [#def36]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:2221:29: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘map_infos’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5332:1: enter_function: entry to ‘gst_rtsp_connection_send_messages’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5335:10: call_function: calling ‘gst_rtsp_connection_send_messages_usec’ from ‘gst_rtsp_connection_send_messages’
# 2219|   
# 2220|           gst_memory_map (mem, &map_infos[k], GST_MAP_READ);
# 2221|->         vectors[j].buffer = map_infos[k].data;
# 2222|           vectors[j].size = map_infos[k].size;
# 2223|           bytes_to_write += vectors[j].size;

Error: GCC_ANALYZER_WARNING (CWE-476): [#def37]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:4796:31: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘map_infos’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5064:1: enter_function: entry to ‘gst_rtsp_watch_send_messages’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5070:3: branch_true: following ‘true’ branch (when ‘watch’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5071:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5071:3: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5073:25: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5077:15: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5078:76: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5078:10: call_function: calling ‘serialize_message’ from ‘gst_rtsp_watch_send_messages’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5078:10: return_function: returning to ‘gst_rtsp_watch_send_messages’ from ‘serialize_message’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5078:8: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5077:31: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5077:15: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5082:10: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspconnection.c:5082:10: call_function: calling ‘gst_rtsp_watch_write_serialized_messages’ from ‘gst_rtsp_watch_send_messages’
# 4794|   
# 4795|             gst_memory_map (mem, &map_infos[k], GST_MAP_READ);
# 4796|->           vectors[j].buffer = map_infos[k].data;
# 4797|             vectors[j].size = map_infos[k].size;
# 4798|             bytes_to_write += vectors[j].size;

Error: GCC_ANALYZER_WARNING (CWE-688): [#def38]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspdefs.c:556:3: warning[-Wanalyzer-null-argument]: use of NULL where non-null expected
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspdefs.c:544:1: enter_function: entry to ‘auth_digest_compute_a1_md5’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspdefs.c:556:3: danger: argument 1 (‘<unknown>’) NULL where non-null expected
#argument 1 of ‘__builtin_strlen’ must be non-null
#  554|     g_checksum_update (md5_context, (const guchar *) password, strlen (password));
#  555|     ret = g_strdup (g_checksum_get_string (md5_context));
#  556|->   g_assert (strlen (ret) == 32);
#  557|     g_checksum_free (md5_context);
#  558|   

Error: GCC_ANALYZER_WARNING (CWE-688): [#def39]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspmessage.c:351:20: warning[-Wanalyzer-null-argument]: use of NULL ‘header’ where non-null expected
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspmessage.c:282:1: enter_function: entry to ‘gst_rtsp_message_new_response’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspmessage.c:287:3: branch_true: following ‘true’ branch (when ‘msg’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspmessage.c:289:12: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/rtsp/gstrtspmessage.c:293:10: call_function: calling ‘gst_rtsp_message_init_response’ from ‘gst_rtsp_message_new_response’
#argument 1 of ‘__builtin_strchr’ must be non-null
#  349|   
#  350|           header = g_strdup (header);
#  351|->         if ((pos = strchr (header, ';'))) {
#  352|             *pos = '\0';
#  353|           }

Error: GCC_ANALYZER_WARNING (CWE-835): [#def40]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:1780:10: warning[-Wanalyzer-infinite-loop]: infinite loop
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:1780:10: danger: infinite loop here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:1780:10: branch_true: when ‘next_payload != 0’: always following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:1781:5: branch_true: ...to here
# 1778|     GstMIKEYPayload *p;
# 1779|   
# 1780|->   while (next_payload != GST_MIKEY_PT_LAST) {
# 1781|       p = NULL;
# 1782|       switch (next_payload) {

Error: GCC_ANALYZER_WARNING (CWE-476): [#def41]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2457:15: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2424:1: enter_function: entry to ‘gst_mikey_message_to_caps’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2436:16: call_function: calling ‘gst_mikey_message_get_cs_srtp’ from ‘gst_mikey_message_to_caps’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2436:16: return_function: returning to ‘gst_mikey_message_to_caps’ from ‘gst_mikey_message_get_cs_srtp’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2436:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2444:30: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2443:11: call_function: calling ‘gst_mikey_message_find_payload’ from ‘gst_mikey_message_to_caps’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2443:11: return_function: returning to ‘gst_mikey_message_to_caps’ from ‘gst_mikey_message_find_payload’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2442:6: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2449:9: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2449:8: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2452:11: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2452:11: call_function: calling ‘gst_mikey_payload_sp_get_n_params’ from ‘gst_mikey_message_to_caps’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2452:11: return_function: returning to ‘gst_mikey_message_to_caps’ from ‘gst_mikey_payload_sp_get_n_params’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2453:17: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2455:11: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2455:11: call_function: calling ‘gst_mikey_payload_sp_get_param’ from ‘gst_mikey_message_to_caps’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2455:11: return_function: returning to ‘gst_mikey_message_to_caps’ from ‘gst_mikey_payload_sp_get_param’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstmikey.c:2457:15: danger: dereference of NULL ‘gst_mikey_payload_sp_get_param(gst_mikey_message_find_payload(msg, 10, (unsigned int)*<unknown>.policy), i)’
# 2455|             gst_mikey_payload_sp_get_param (payload, i);
# 2456|   
# 2457|->       switch (param->type) {
# 2458|           case GST_MIKEY_SP_SRTP_ENC_ALG:
# 2459|             enc_alg = param->val[0];

Error: GCC_ANALYZER_WARNING (CWE-476): [#def42]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2041:9: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2012:1: enter_function: entry to ‘gst_sdp_media_as_text’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2017:3: branch_true: following ‘true’ branch (when ‘media’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2019:11: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2031:19: call_function: calling ‘gst_sdp_media_formats_len’ from ‘gst_sdp_media_as_text’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2031:19: return_function: returning to ‘gst_sdp_media_as_text’ from ‘gst_sdp_media_formats_len’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2038:19: call_function: calling ‘gst_sdp_media_connections_len’ from ‘gst_sdp_media_as_text’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2038:19: return_function: returning to ‘gst_sdp_media_as_text’ from ‘gst_sdp_media_connections_len’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2038:15: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2039:36: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2039:36: call_function: calling ‘gst_sdp_media_get_connection’ from ‘gst_sdp_media_as_text’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2039:36: return_function: returning to ‘gst_sdp_media_as_text’ from ‘gst_sdp_media_get_connection’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2038:19: call_function: calling ‘gst_sdp_media_connections_len’ from ‘gst_sdp_media_as_text’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2038:19: return_function: returning to ‘gst_sdp_media_as_text’ from ‘gst_sdp_media_connections_len’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2038:15: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2039:36: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2039:36: call_function: calling ‘gst_sdp_media_get_connection’ from ‘gst_sdp_media_as_text’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2039:36: return_function: returning to ‘gst_sdp_media_as_text’ from ‘gst_sdp_media_get_connection’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2041:9: danger: dereference of NULL ‘gst_sdp_media_get_connection(media,  i)’
# 2039|       const GstSDPConnection *conn = gst_sdp_media_get_connection (media, i);
# 2040|   
# 2041|->     if (conn->nettype && conn->addrtype && conn->address) {
# 2042|         g_string_append_printf (lines, "c=%s %s %s", conn->nettype,
# 2043|             conn->addrtype, conn->address);

Error: GCC_ANALYZER_WARNING (CWE-476): [#def43]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2073:9: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2012:1: enter_function: entry to ‘gst_sdp_media_as_text’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2017:3: branch_true: following ‘true’ branch (when ‘media’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2019:11: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2031:19: call_function: calling ‘gst_sdp_media_formats_len’ from ‘gst_sdp_media_as_text’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2031:19: return_function: returning to ‘gst_sdp_media_as_text’ from ‘gst_sdp_media_formats_len’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2038:19: call_function: calling ‘gst_sdp_media_connections_len’ from ‘gst_sdp_media_as_text’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2038:19: return_function: returning to ‘gst_sdp_media_as_text’ from ‘gst_sdp_media_connections_len’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2056:19: call_function: calling ‘gst_sdp_media_bandwidths_len’ from ‘gst_sdp_media_as_text’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2056:19: return_function: returning to ‘gst_sdp_media_as_text’ from ‘gst_sdp_media_bandwidths_len’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2070:19: call_function: calling ‘gst_sdp_media_attributes_len’ from ‘gst_sdp_media_as_text’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2070:19: return_function: returning to ‘gst_sdp_media_as_text’ from ‘gst_sdp_media_attributes_len’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2070:15: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2071:35: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2071:35: call_function: calling ‘gst_sdp_media_get_attribute’ from ‘gst_sdp_media_as_text’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2071:35: return_function: returning to ‘gst_sdp_media_as_text’ from ‘gst_sdp_media_get_attribute’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2070:19: call_function: calling ‘gst_sdp_media_attributes_len’ from ‘gst_sdp_media_as_text’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2070:19: return_function: returning to ‘gst_sdp_media_as_text’ from ‘gst_sdp_media_attributes_len’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2070:15: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2071:35: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2071:35: call_function: calling ‘gst_sdp_media_get_attribute’ from ‘gst_sdp_media_as_text’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2071:35: return_function: returning to ‘gst_sdp_media_as_text’ from ‘gst_sdp_media_get_attribute’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2073:9: danger: dereference of NULL ‘gst_sdp_media_get_attribute(media,  i)’
# 2071|       const GstSDPAttribute *attr = gst_sdp_media_get_attribute (media, i);
# 2072|   
# 2073|->     if (attr->key) {
# 2074|         g_string_append_printf (lines, "a=%s", attr->key);
# 2075|         if (attr->value && attr->value[0] != '\0')

Error: GCC_ANALYZER_WARNING (CWE-476): [#def44]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2980:10: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘p’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3180:1: enter_function: entry to ‘gst_sdp_message_parse_buffer’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3190:3: branch_true: following ‘true’ branch (when ‘msg’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3191:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3191:3: branch_true: following ‘true’ branch (when ‘data’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3192:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3192:3: branch_true: following ‘true’ branch (when ‘size != 0’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3194:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3209:5: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3211:13: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3212:8: branch_false: following ‘false’ branch (when ‘type != 0’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3215:5: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3215:5: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3217:9: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3221:5: branch_false: following ‘false’ branch...
 branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3228:8: branch_false: following ‘false’ branch (when ‘bufsize > len’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3232:5: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3235:5: call_function: calling ‘gst_sdp_parse_line’ from ‘gst_sdp_message_parse_buffer’
# 2978|     idx = 0;
# 2979|     /* skip spaces */
# 2980|->   while (g_ascii_isspace (**src))
# 2981|       (*src)++;
# 2982|   

Error: GCC_ANALYZER_WARNING (CWE-476): [#def45]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:2999:10: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘p’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3180:1: enter_function: entry to ‘gst_sdp_message_parse_buffer’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3190:3: branch_true: following ‘true’ branch (when ‘msg’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3191:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3191:3: branch_true: following ‘true’ branch (when ‘data’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3192:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3192:3: branch_true: following ‘true’ branch (when ‘size != 0’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3194:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3209:5: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3211:13: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3212:8: branch_false: following ‘false’ branch (when ‘type != 0’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3215:5: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3215:5: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3217:9: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3221:5: branch_false: following ‘false’ branch...
 branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3228:8: branch_false: following ‘false’ branch (when ‘bufsize > len’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3232:5: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3235:5: call_function: calling ‘gst_sdp_parse_line’ from ‘gst_sdp_message_parse_buffer’
# 2997|     idx = 0;
# 2998|     /* skip spaces */
# 2999|->   while (g_ascii_isspace (**src))
# 3000|       (*src)++;
# 3001|   

Error: GCC_ANALYZER_WARNING (CWE-476): [#def46]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3037:11: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘buffer’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3180:1: enter_function: entry to ‘gst_sdp_message_parse_buffer’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3190:3: branch_true: following ‘true’ branch (when ‘msg’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3191:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3191:3: branch_true: following ‘true’ branch (when ‘data’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3192:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3192:3: branch_true: following ‘true’ branch (when ‘size != 0’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3194:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3209:5: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3211:13: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3212:8: branch_false: following ‘false’ branch (when ‘type != 0’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3215:5: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3215:5: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3217:9: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3221:5: branch_false: following ‘false’ branch...
 branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3228:8: branch_false: following ‘false’ branch (when ‘bufsize > len’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3232:5: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3235:5: call_function: calling ‘gst_sdp_parse_line’ from ‘gst_sdp_message_parse_buffer’
# 3035|     switch (type) {
# 3036|       case 'v':
# 3037|->       if (buffer[0] != '0')
# 3038|           GST_WARNING ("wrong SDP version");
# 3039|         gst_sdp_message_set_version (c->msg, buffer);

Error: GCC_ANALYZER_WARNING (CWE-688): [#def47]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3076:22: warning[-Wanalyzer-null-argument]: use of NULL ‘str2’ where non-null expected
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3180:1: enter_function: entry to ‘gst_sdp_message_parse_buffer’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3190:3: branch_true: following ‘true’ branch (when ‘msg’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3191:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3191:3: branch_true: following ‘true’ branch (when ‘data’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3192:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3192:3: branch_true: following ‘true’ branch (when ‘size != 0’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3194:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3209:5: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3211:13: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3212:8: branch_false: following ‘false’ branch (when ‘type != 0’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3215:5: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3215:5: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3217:9: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3221:5: branch_false: following ‘false’ branch...
 branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3228:8: branch_false: following ‘false’ branch (when ‘bufsize > len’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3232:5: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3235:5: call_function: calling ‘gst_sdp_parse_line’ from ‘gst_sdp_message_parse_buffer’
#argument 1 of ‘__builtin_strchr’ must be non-null
# 3074|   
# 3075|         str2 = p;
# 3076|->       while ((str2 = strchr (str2, '/')))
# 3077|           *str2++ = ' ';
# 3078|         READ_STRING (conn.nettype);

Error: GCC_ANALYZER_WARNING (CWE-688): [#def48]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3472:3: warning[-Wanalyzer-null-argument]: use of NULL where non-null expected
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3465:1: enter_function: entry to ‘gst_sdp_parse_rtpmap’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:3472:3: danger: argument 1 (‘<unknown>’) NULL where non-null expected
#argument 1 of ‘__builtin_strchr’ must be non-null
# 3470|     p = orig_value = g_strdup (rtpmap);
# 3471|   
# 3472|->   PARSE_INT (p, " ", *payload);
# 3473|     if (*payload == -1)
# 3474|       goto fail;

Error: GCC_ANALYZER_WARNING (CWE-476): [#def49]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4158:3: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘p’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4149:1: enter_function: entry to ‘gst_sdp_parse_keymgmt’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4158:3: danger: dereference of NULL ‘p’
# 4156|     p = orig_value = g_strdup (keymgmt);
# 4157|   
# 4158|->   SKIP_SPACES (p);
# 4159|     if (*p == '\0') {
# 4160|       g_free (orig_value);

Error: GCC_ANALYZER_WARNING (CWE-688): [#def50]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4324:10: warning[-Wanalyzer-null-argument]: use of NULL where non-null expected
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4299:1: enter_function: entry to ‘gst_sdp_media_add_extmap_attributes’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4306:3: branch_true: following ‘true’ branch (when ‘attributes’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4307:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4307:3: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4311:15: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4315:13: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4316:8: branch_false: following ‘false’ branch (when the strings are equal)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4319:5: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4324:10: danger: argument 1 (‘<unknown>’) NULL where non-null expected
# 4322|       to_free = p = g_strdup (extmap);
# 4323|   
# 4324|->     id = strtoul (p, &tmp, 10);
# 4325|       if (id == 0 || id == 15 || id > 9999 || (*tmp != ' ' && *tmp != '/')) {
# 4326|         GST_ERROR ("Invalid extmap '%s'", to_free);

Error: GCC_ANALYZER_WARNING (CWE-688): [#def51]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4433:12: warning[-Wanalyzer-null-argument]: use of NULL where non-null expected
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4406:1: enter_function: entry to ‘gst_sdp_media_add_ssrc_attributes’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4412:3: branch_true: following ‘true’ branch (when ‘attributes’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4413:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4413:3: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4417:15: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4424:13: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4425:8: branch_false: following ‘false’ branch (when the strings are equal)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4428:5: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4433:12: danger: argument 1 (‘<unknown>’) NULL where non-null expected
# 4431|       to_free = p = g_strdup (value);
# 4432|   
# 4433|->     ssrc = strtoul (p, &tmp, 10);
# 4434|       if (*tmp != ' ') {
# 4435|         GST_ERROR ("Invalid ssrc attribute '%s'", to_free);

Error: GCC_ANALYZER_WARNING (CWE-688): [#def52]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4500:5: warning[-Wanalyzer-null-argument]: use of NULL where non-null expected
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4473:1: enter_function: entry to ‘gst_sdp_media_add_rid_attributes’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4480:3: branch_true: following ‘true’ branch (when ‘attributes’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4481:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4481:3: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4482:3: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4484:7: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4486:15: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4491:13: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4492:8: branch_false: following ‘false’ branch (when the strings are equal)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4495:5: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/sdp/gstsdpmessage.c:4500:5: danger: argument 1 (‘<unknown>’) NULL where non-null expected
#argument 1 of ‘__builtin_strchr’ must be non-null
# 4498|       to_free = p = g_strdup (rid);
# 4499|   
# 4500|->     PARSE_STRING (p, " ", id);
# 4501|       if (id == NULL || *id == '\0') {
# 4502|         GST_ERROR ("Invalid rid \'%s\'", to_free);

Error: GCC_ANALYZER_WARNING (CWE-688): [#def53]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:364:15: warning[-Wanalyzer-null-argument]: use of NULL where non-null expected
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:314:1: enter_function: entry to ‘parse_text’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:322:15: branch_true: following ‘true’ branch (when ‘i != 18’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:323:31: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:327:6: branch_false: following ‘false’ branch (when ‘i != 18’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:330:11: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:362:7: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:363:26: call_function: inlined call to ‘g_strdup_inline’ from ‘parse_text’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:364:15: danger: argument 2 (‘<unknown>’) NULL where non-null expected
#argument 2 of ‘__builtin_strstr’ must be non-null
#  362|         g_assert (license->version == NULL);
#  363|         license->version = g_strdup (text);
#  364|->       found = strstr (known_versions, license->version);
#  365|         if (found == NULL || found[strlen (license->version)] != '/')
#  366|           g_error ("Unexpected version '%s', please add to table.", text);

Error: GCC_ANALYZER_WARNING (CWE-775): [#def54]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:696:6: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(dict_filename, "wb")’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:695:7: acquire_resource: opened here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:696:6: danger: ‘fopen(dict_filename, "wb")’ leaks here; was opened at [(1)](sarif:/runs/0/results/1/codeFlows/0/threadFlows/0/locations/0)
#  694|   
#  695|     f = fopen (dict_filename, "wb");
#  696|->   if (fwrite (g_variant_get_data (var), g_variant_get_size (var), 1, f) != 1) {
#  697|       g_error ("failed to write dict to file: %s", g_strerror (errno));
#  698|     }

Error: GCC_ANALYZER_WARNING (CWE-401): [#def55]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:696:6: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(dict_filename, "wb")’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:695:7: acquire_memory: allocated here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:696:6: danger: ‘fopen(dict_filename, "wb")’ leaks here; was allocated at [(1)](sarif:/runs/0/results/2/codeFlows/0/threadFlows/0/locations/0)
#  694|   
#  695|     f = fopen (dict_filename, "wb");
#  696|->   if (fwrite (g_variant_get_data (var), g_variant_get_size (var), 1, f) != 1) {
#  697|       g_error ("failed to write dict to file: %s", g_strerror (errno));
#  698|     }

Error: GCC_ANALYZER_WARNING (CWE-688): [#def56]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:696:7: warning[-Wanalyzer-possible-null-argument]: use of possibly-NULL ‘fopen(dict_filename, "wb")’ where non-null expected
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:695:7: acquire_memory: this call could return NULL
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/tag/mklicensestables.c:696:7: danger: argument 4 (‘fopen(dict_filename, "wb")’) from [(1)](sarif:/runs/0/results/3/codeFlows/0/threadFlows/0/locations/0) could be NULL where non-null expected
#  694|   
#  695|     f = fopen (dict_filename, "wb");
#  696|->   if (fwrite (g_variant_get_data (var), g_variant_get_size (var), 1, f) != 1) {
#  697|       g_error ("failed to write dict to file: %s", g_strerror (errno));
#  698|     }

Error: GCC_ANALYZER_WARNING (CWE-476): [#def57]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-format.c:4898:5: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-format.c:4855:1: enter_function: entry to ‘unpack_TILED’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-format.c:4870:16: call_function: calling ‘gst_video_format_get_info’ from ‘unpack_TILED’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-format.c:4870:16: return_function: returning to ‘unpack_TILED’ from ‘gst_video_format_get_info’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-format.c:4888:10: branch_true: following ‘true’ branch (when ‘tx < ntx’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-format.c:4893:5: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-format.c:4898:5: danger: dereference of NULL ‘gst_video_format_get_info(inner_format)’
# 4896|       unpack_width = MIN (width - x, tile_width - x);
# 4897|   
# 4898|->     tile_finfo->unpack_func (tile_finfo, flags, line, tdata, tstride, x, y,
# 4899|           unpack_width);
# 4900|   

Error: GCC_ANALYZER_WARNING (CWE-476): [#def58]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-format.c:4948:5: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-format.c:4908:1: enter_function: entry to ‘pack_TILED’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-format.c:4924:16: call_function: calling ‘gst_video_format_get_info’ from ‘pack_TILED’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-format.c:4924:16: return_function: returning to ‘pack_TILED’ from ‘gst_video_format_get_info’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-format.c:4938:16: branch_true: following ‘true’ branch (when ‘tx < ntx’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-format.c:4943:5: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-format.c:4948:5: danger: dereference of NULL ‘gst_video_format_get_info(inner_format)’
# 4946|       pack_width = MIN (width, tile_width);
# 4947|   
# 4948|->     tile_finfo->pack_func (tile_finfo, flags, line, sstride, tdata, tstride,
# 4949|           chroma_site, y, pack_width);
# 4950|   

Error: GCC_ANALYZER_WARNING (CWE-476): [#def59]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1393:10: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘scaled_rect’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1249:18: branch_true: following ‘true’ branch (when ‘unscaled == 0’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1249:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1295:6: branch_false: following ‘false’ branch (when ‘scaled_rect’ is NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1299:6: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1392:6: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1393:10: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1393:10: danger: dereference of NULL ‘scaled_rect’
# 1391|     GST_RECTANGLE_LOCK (rectangle);
# 1392|     if (apply_global_alpha
# 1393|->       && scaled_rect->applied_global_alpha != rectangle->global_alpha) {
# 1394|       gst_video_overlay_rectangle_apply_global_alpha (scaled_rect,
# 1395|           rectangle->global_alpha);

Error: GCC_ANALYZER_WARNING (CWE-476): [#def60]
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1403:10: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘scaled_rect’
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1249:18: branch_true: following ‘true’ branch (when ‘unscaled == 0’)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1249:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1295:6: branch_false: following ‘false’ branch (when ‘scaled_rect’ is NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1299:6: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1392:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1398:13: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1398:13: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1401:3: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst-libs/gst/video/video-overlay-composition.c:1403:10: danger: dereference of NULL ‘scaled_rect’
# 1401|     GST_RECTANGLE_UNLOCK (rectangle);
# 1402|   
# 1403|->   return scaled_rect->pixels;
# 1404|   }
# 1405|   

Error: GCC_ANALYZER_WARNING (CWE-476): [#def61]
gst-plugins-base-1.26.0/redhat-linux-build/../gst/dsd/gstdsdconvert.c:337:5: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘out_dsd_plane_ofs_meta’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/dsd/gstdsdconvert.c:283:3: branch_true: following ‘true’ branch (when ‘inbuf’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/dsd/gstdsdconvert.c:284:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/dsd/gstdsdconvert.c:284:3: branch_true: following ‘true’ branch (when ‘outbuf’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/dsd/gstdsdconvert.c:286:3: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/dsd/gstdsdconvert.c:296:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/dsd/gstdsdconvert.c:305:7: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/dsd/gstdsdconvert.c:305:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/dsd/gstdsdconvert.c:313:8: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/dsd/gstdsdconvert.c:313:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/dsd/gstdsdconvert.c:317:8: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/dsd/gstdsdconvert.c:317:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/dsd/gstdsdconvert.c:326:7: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/dsd/gstdsdconvert.c:334:6: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/dsd/gstdsdconvert.c:338:9: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/dsd/gstdsdconvert.c:337:5: danger: dereference of NULL ‘out_dsd_plane_ofs_meta’
#  335|       gint channel_idx;
#  336|   
#  337|->     out_dsd_plane_ofs_meta->num_bytes_per_channel =
#  338|           num_dsd_bytes / num_channels;
#  339|   

Error: GCC_ANALYZER_WARNING (CWE-476): [#def62]
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gstdecodebin3.c:3639:7: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gstdecodebin3.c:3633:1: enter_function: entry to ‘gst_decodebin_input_link_to_slot’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gstdecodebin3.c:3637:7: call_function: calling ‘gst_decodebin_get_slot_for_input_stream_locked’ from ‘gst_decodebin_input_link_to_slot’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gstdecodebin3.c:3637:7: return_function: returning to ‘gst_decodebin_input_link_to_slot’ from ‘gst_decodebin_get_slot_for_input_stream_locked’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gstdecodebin3.c:3639:7: danger: dereference of NULL ‘gst_decodebin_get_slot_for_input_stream_locked(dbin,  input_stream)’
# 3637|         gst_decodebin_get_slot_for_input_stream_locked (dbin, input_stream);
# 3638|   
# 3639|->   if (slot->input != NULL && slot->input != input_stream) {
# 3640|       GST_ERROR_OBJECT (slot->dbin, "Input stream is already linked to a slot");
# 3641|       return;

Error: GCC_ANALYZER_WARNING (CWE-476): [#def63]
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gstdecodebin3.c:4057:5: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gstdecodebin3.c:4032:7: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gstdecodebin3.c:4041:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gstdecodebin3.c:4050:3: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gstdecodebin3.c:4055:39: branch_true: following ‘true’ branch (when ‘tmp’ is non-NULL)...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gstdecodebin3.c:4056:60: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gstdecodebin3.c:4057:5: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gstdecodebin3.c:4057:5: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gstdecodebin3.c:4057:5: danger: dereference of NULL ‘find_slot_for_stream_id(dbin, *tmp.data)’
# 4055|     for (tmp = collection->to_activate; tmp; tmp = tmp->next) {
# 4056|       MultiQueueSlot *tslot = find_slot_for_stream_id (dbin, tmp->data);
# 4057|->     GST_LOG_OBJECT (slot->src_pad,
# 4058|           "Checking slot %s:%s (output:%p , stream:%s)",
# 4059|           GST_DEBUG_PAD_NAME (tslot->src_pad), tslot->output,

Error: GCC_ANALYZER_WARNING (CWE-476): [#def64]
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturidecodebin3.c:1188:7: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘*new_item.main_item’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturidecodebin3.c:1327:1: enter_function: entry to ‘uri_src_block_probe’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturidecodebin3.c:1343:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturidecodebin3.c:1346:32: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturidecodebin3.c:1346:13: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturidecodebin3.c:1347:5: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturidecodebin3.c:1349:5: call_function: calling ‘switch_and_activate_input_locked’ from ‘uri_src_block_probe’
# 1186|   
# 1187|     pending_about_to_finish = new_item->pending_about_to_finish;
# 1188|->   if (new_item->main_item->handler->pending_buffering_msg) {
# 1189|       pending_buffering_msg = new_item->main_item->handler->pending_buffering_msg;
# 1190|       new_item->main_item->handler->pending_buffering_msg = NULL;

Error: GCC_ANALYZER_WARNING (CWE-476): [#def65]
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturidecodebin3.c:2029:40: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturidecodebin3.c:2023:10: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturidecodebin3.c:2029:40: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturidecodebin3.c:2029:40: danger: dereference of NULL ‘<unknown>’
# 2027|     }
# 2028|   
# 2029|->   dec->output_item = dec->input_item = dec->play_items->data;
# 2030|     dec->output_item->posted_about_to_finish = FALSE;
# 2031|     PLAY_ITEMS_UNLOCK (dec);

Error: GCC_ANALYZER_WARNING (CWE-476): [#def66]
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:906:32: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:859:1: enter_function: entry to ‘new_demuxer_pad_added_cb’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:905:10: call_function: calling ‘new_output_slot’ from ‘new_demuxer_pad_added_cb’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:905:10: return_function: returning to ‘new_demuxer_pad_added_cb’ from ‘new_output_slot’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:906:32: danger: dereference of NULL ‘new_output_slot(info,  pad)’
#  904|        as-is directly. We still add an event probe to deal with EOS */
#  905|     slot = new_output_slot (info, pad);
#  906|->   output_pad = gst_object_ref (slot->output_pad);
#  907|   
#  908|     GST_URI_SOURCE_BIN_UNLOCK (urisrc);

Error: GCC_ANALYZER_WARNING (CWE-476): [#def67]
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2194:34: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2177:1: enter_function: entry to ‘handle_new_pad’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2187:6: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2193:12: call_function: calling ‘new_output_slot’ from ‘handle_new_pad’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2193:12: return_function: returning to ‘handle_new_pad’ from ‘new_output_slot’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2194:34: danger: dereference of NULL ‘new_output_slot(info,  srcpad)’
# 2192|           ", exposing", caps);
# 2193|       slot = new_output_slot (info, srcpad);
# 2194|->     output_pad = gst_object_ref (slot->output_pad);
# 2195|       GST_URI_SOURCE_BIN_UNLOCK (urisrc);
# 2196|   

Error: GCC_ANALYZER_WARNING (CWE-476): [#def68]
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2249:36: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2177:1: enter_function: entry to ‘handle_new_pad’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2208:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2237:15: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2237:13: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2238:9: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2238:8: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2247:7: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2248:14: call_function: calling ‘new_output_slot’ from ‘handle_new_pad’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2248:14: return_function: returning to ‘handle_new_pad’ from ‘new_output_slot’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2249:36: danger: dereference of NULL ‘new_output_slot(info,  srcpad)’
# 2247|         GST_URI_SOURCE_BIN_LOCK (urisrc);
# 2248|         slot = new_output_slot (info, srcpad);
# 2249|->       output_pad = gst_object_ref (slot->output_pad);
# 2250|         GST_URI_SOURCE_BIN_UNLOCK (urisrc);
# 2251|         expose_output_pad (urisrc, output_pad);

Error: GCC_ANALYZER_WARNING (CWE-476): [#def69]
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2281:36: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2177:1: enter_function: entry to ‘handle_new_pad’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2208:6: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2237:15: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2237:13: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2256:9: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2267:8: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2275:7: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2276:14: call_function: calling ‘new_output_slot’ from ‘handle_new_pad’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2276:14: return_function: returning to ‘handle_new_pad’ from ‘new_output_slot’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/playback/gsturisourcebin.c:2281:36: danger: dereference of NULL ‘new_output_slot(info,  srcpad)’
# 2279|             pre_queue_event_probe, urisrc, NULL);
# 2280|   
# 2281|->       output_pad = gst_object_ref (slot->output_pad);
# 2282|         GST_URI_SOURCE_BIN_UNLOCK (urisrc);
# 2283|   

Error: GCC_ANALYZER_WARNING (CWE-476): [#def70]
gst-plugins-base-1.26.0/redhat-linux-build/../gst/subparse/gstsubparse.c:1149:7: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘read’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/subparse/gstsubparse.c:1291:1: enter_function: entry to ‘parse_dks’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/subparse/gstsubparse.c:1315:10: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/subparse/gstsubparse.c:1316:9: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/subparse/gstsubparse.c:1329:10: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../gst/subparse/gstsubparse.c:1333:7: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../gst/subparse/gstsubparse.c:1338:7: call_function: calling ‘unescape_newlines_br’ from ‘parse_dks’
# 1147|      * of the subviewer format uses this for newlines */
# 1148|   
# 1149|->   if (read[0] == '\0' || read[1] == '\0' || read[2] == '\0' || read[3] == '\0')
# 1150|       return;
# 1151|   

Error: GCC_ANALYZER_WARNING (CWE-476): [#def71]
gst-plugins-base-1.26.0/redhat-linux-build/../gst/subparse/samiparse.c:543:9: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘next’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/subparse/samiparse.c:887:1: enter_function: entry to ‘parse_sami’
gst-plugins-base-1.26.0/redhat-linux-build/../gst/subparse/samiparse.c:893:3: call_function: calling ‘html_context_parse’ from ‘parse_sami’
#  541|     next = ctxt->buf->str;
#  542|     while (TRUE) {
#  543|->     if (next[0] == '<') {
#  544|         gchar *element = NULL;
#  545|         /* find <blahblah> */

Error: GCC_ANALYZER_WARNING (CWE-457): [#def72]
gst-plugins-base-1.26.0/redhat-linux-build/../sys/ximage/ximagesink.c:524:7: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘temp.abs_pressure’
gst-plugins-base-1.26.0/redhat-linux-build/../sys/ximage/ximagesink.c:1887:1: enter_function: entry to ‘gst_x_image_sink_set_window_handle’
gst-plugins-base-1.26.0/redhat-linux-build/../sys/ximage/ximagesink.c:1919:6: branch_true: following ‘true’ branch (when ‘id == 0’)...
gst-plugins-base-1.26.0/redhat-linux-build/../sys/ximage/ximagesink.c:1922:9: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../sys/ximage/ximagesink.c:1922:8: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../sys/ximage/ximagesink.c:1923:17: call_function: calling ‘gst_x_image_sink_xwindow_new’ from ‘gst_x_image_sink_set_window_handle’
#  522|   
#  523|         device = g_new (GstXTouchDevice, 1);
#  524|->       *device = temp;
#  525|         device->name = g_strdup (device->name);
#  526|         ximagesink->touch_devices =

Error: GCC_ANALYZER_WARNING (CWE-457): [#def73]
gst-plugins-base-1.26.0/redhat-linux-build/../sys/xvimage/xvcontext.c:1197:24: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘temp.abs_pressure’
gst-plugins-base-1.26.0/redhat-linux-build/../sys/xvimage/xvcontext.c:1150:15: branch_true: following ‘true’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../sys/xvimage/xvcontext.c:1155:16: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../sys/xvimage/xvcontext.c:1155:8: branch_false: following ‘false’ branch...
gst-plugins-base-1.26.0/redhat-linux-build/../sys/xvimage/xvcontext.c:1159:15: branch_false: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../sys/xvimage/xvcontext.c:1191:8: branch_true: following ‘true’ branch (when ‘has_touch != 0’)...
gst-plugins-base-1.26.0/redhat-linux-build/../sys/xvimage/xvcontext.c:1192:7: branch_true: ...to here
gst-plugins-base-1.26.0/redhat-linux-build/../sys/xvimage/xvcontext.c:1197:24: danger: use of uninitialized value ‘temp.abs_pressure’ here
# 1195|             temp.id, temp.name);
# 1196|   
# 1197|->       GstXvTouchDevice device = temp;
# 1198|         device.name = g_strdup (temp.name);
# 1199|   

Error: GCC_ANALYZER_WARNING (CWE-476): [#def74]
gst-plugins-base-1.26.0/redhat-linux-build/../sys/xvimage/xvimageallocator.c:264:11: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
#  262|         mem->xvimage->height, &mem->crop, NULL);
#  263|   
#  264|->   memcpy (copy->xvimage->data + copy->parent.offset,
#  265|         mem->xvimage->data + mem->parent.offset, mem->xvimage->data_size);
#  266|   

Error: CPPCHECK_WARNING (CWE-909): [#def75]
gst-plugins-base-1.26.0/sys/xvimage/xvimagesink.c:318: error[uninitStructMember]: Uninitialized struct member: s.x
#  316|       dst.h = xwindow->render_rect.h;
#  317|   
#  318|->     gst_video_sink_center_rect (s, dst, &result, TRUE);
#  319|       result.x += xwindow->render_rect.x;
#  320|       result.y += xwindow->render_rect.y;

Error: CPPCHECK_WARNING (CWE-909): [#def76]
gst-plugins-base-1.26.0/sys/xvimage/xvimagesink.c:318: error[uninitStructMember]: Uninitialized struct member: s.y
#  316|       dst.h = xwindow->render_rect.h;
#  317|   
#  318|->     gst_video_sink_center_rect (s, dst, &result, TRUE);
#  319|       result.x += xwindow->render_rect.x;
#  320|       result.y += xwindow->render_rect.y;

Error: CPPCHECK_WARNING (CWE-457): [#def77]
gst-plugins-base-1.26.0/sys/xvimage/xvimagesink.c:318: error[uninitvar]: Uninitialized variables: s.x, s.y
#  316|       dst.h = xwindow->render_rect.h;
#  317|   
#  318|->     gst_video_sink_center_rect (s, dst, &result, TRUE);
#  319|       result.x += xwindow->render_rect.x;
#  320|       result.y += xwindow->render_rect.y;

Scan Properties