CVE-2019-16277
PicoC 2.1 is affected by CVE-2019-16277 due to a heap-based buffer overflow in StringStrcpy in cstdlib/string.c when invoked from ExpressionParseFunctionCall in expression.c. The Red Hat entry confirms impact on PicoC 2.1; other references consistently describe the same issue. No exploit or mitig...