June 9, 2026
10:32 a.m.
On Tue Jun 9 09:02:46 2026 +0000, Barath Kannan wrote:
could you elaborate on this? do you mean to say thisArg should be copied to a local buffer(say WCHAR srcpath\[MAX_PATH\]) and to check for buffer overflow upon copying fd.cFileName to the end of srcpath? yes mostly, you also need to check that thisArg (in fact up to fileNamePart) fits in MAX_PATH too
-- https://gitlab.winehq.org/wine/wine/-/merge_requests/11094#note_142510