|
// Since we use pointers, the default = would work incorrectly. |
|
blake2s_state& operator = (blake2s_state &st) |
|
{ |
|
if (this != &st) |
|
{ |
|
memcpy(buf, st.buf, BLAKE_DATA_SIZE); |
|
buflen = st.buflen; |
|
last_node = st.last_node; |
|
} |
|
return *this; |
|
} |
Filename: blake2s.hpp
Line: 76
CWE: 121 (Stack-based Buffer Overflow)
This call to memcpy() contains a potential buffer overflow. The specified size of 176 bytes is larger than the space allocated to the destination buffer ((tainted) bytes). If an attacker can control the data written into the buffer, the overflow may result in execution of arbitrary code. Ensure that the specified size is within the bounds of the allocated space. References: CWE OWASP Veracode/nDon't know how to fix this? Don't know why this was reported?
Get Assistance from Veracode
Sumatrapdf-cpp//ext/unrar/blake2s.hpp
Lines 71 to 81 in feca3c8
Filename: blake2s.hpp
Line: 76
CWE: 121 (Stack-based Buffer Overflow)
This call to memcpy() contains a potential buffer overflow. The specified size of 176 bytes is larger than the space allocated to the destination buffer ((tainted) bytes). If an attacker can control the data written into the buffer, the overflow may result in execution of arbitrary code. Ensure that the specified size is within the bounds of the allocated space. References: CWE OWASP Veracode/nDon't know how to fix this? Don't know why this was reported?
Get Assistance from Veracode