runtime

This issue involves returning an address of a local variable (stack address) from a function, which is considered undefined behavior according to the C Standard. This can lead to exploitable vulnerabilities at runtime, thus fitting the "runtime" category.