Mateusz Loskot :: hacking on, working out, living up

ATL Security Update

29 Jul 2009 | mloskot

Those of you who use Visual Studio in daily work have probably noticed there is has been new security update issued for Active Template Library. The Channel 9 also published very interesting webcast in which three engineers from Microsoft explain what’s inside the update for ATL.

Developers who have built controls using vulnerable versions of ATL should take immediate action to review and identify any vulnerabilities, modify and recompile their affected controls and components using the updated versions of ATL and finally distribute a non-vulnerable version of the controls and components to their customers.

Along with security fixes, the update includes one more interesting feature. Damien Watkins announced (12 min 20 sec) that now:

you can include ATL as a kind of header only implementation

I suppose, it may make it easier to port ATL features to development environments produced by parties like MinGW, so users of these will likely be able to use Windows Template Library (WTL) based on ATL. I’m dreaming, am I?

Inside the Active Template Library (ATL) Security Update | Jul 28th @ 10:02 AM

Fork me on GitHub