From bbdcc6365eb6e1443caabebde0ecd6e427926d63 Mon Sep 17 00:00:00 2001
From: orbisai0security <mediratta01.pally@gmail.com>
Date: Sun, 10 May 2026 16:23:39 +0000
Subject: [PATCH] fix: V-009 security vulnerability

Automated security fix generated by Orbis Security AI
---
 init/garden/rtl/crt/rtl.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/init/garden/rtl/crt/rtl.c b/init/garden/rtl/crt/rtl.c
index 6ad46dcc1..9b96ae5de 100644
--- a/init/garden/rtl/crt/rtl.c
+++ b/init/garden/rtl/crt/rtl.c
@@ -873,7 +873,7 @@ void *rtl_create_process(const char *file_name)
         return NULL;
     if (StringSize >= 32)
         return NULL;
-    strncpy(pName,file_name,16);
+    snprintf(pName, sizeof(pName), "%s", file_name);
     pName[17] = 0;
     pName[31] = 0;
 
@@ -2327,7 +2327,7 @@ __rtl_clone_and_execute_imp(
     if (StringSize > 256)
         goto fail;
     memset(LocalName,0,256);
-    sprintf(LocalName,name);
+    snprintf(LocalName, sizeof(LocalName), "%s", name);
     NameAddress = (unsigned long) LocalName;
 
 // #todo