Buffer Overflow in the C/C++ RTL
July 24, 2024
We recently identified a potential buffer overflow in the C/C++ runtime library (RTL). Although this is an issue that was introduced to the code in 1997 with no exploitation since its introduction, we are publishing a notification and a fix for safety and openness, out of an abundance of caution.
Issue information:
Affects _wgetcurdir, _wsearchstr, plus the “_t” variants _tgetdcwd and…