Earlier this week, Cyberpunk 2077 players were cautioned about using custom mods and saves on the PC version of the sci-RPG due to a newly discovered vulnerability affecting certain external DLL files that could allow malicious actors to execute unwanted code on PCs. The developer has addressed that issue today with its latest hotfix, version 1.12, which fixes a buffer overrun issue and removes/replaces non-ASLR DLLs.
“Hotfix 1.12 is now available on PC,” CD PROJEKT RED’s patch notes read. “This update addresses the vulnerability that could be used as part of remote code execution (including save files).”
- Fixed a buffer overrun issue.
- Removed/replaced non-ASLR DLLs.
“If you plan to use @CyberpunkGame mods/custom saves on PC, use caution,” the developer warned after its initial discovery. “We’ve been made aware of a vulnerability in external DLL files the game uses which can be used to execute code on PCs. Issue will be fixed ASAP. For now, please refrain from using files from unknown sources.”
Hotfix 1.12 is now available on PC!— Cyberpunk 2077 (@CyberpunkGame) February 5, 2021
This update addresses the vulnerability that could be used as part of remote code execution (including save files):
– Fixed a buffer overrun issue.
– Removed/replaced non-ASLR DLLs. pic.twitter.com/LAkBfVpnXf