-
Bug
-
Resolution: Fixed
-
P3
-
1.1.0
-
b162
-
generic
-
generic
-
Not verified
| Issue | Fix Version | Assignee | Priority | Status | Resolution | Resolved In Build |
|---|---|---|---|---|---|---|
| JDK-8177614 | 10 | Stuart Marks | P3 | Resolved | Fixed | b04 |
The specification for this method is as follows, in part:
==========
protected boolean enableReplaceObject(boolean enable) throws SecurityException
...
If enable is true, and there is a security manager installed, this method first calls the security manager's checkPermission method....
==========
This does not match the implementation. The implementation will only issue the security check if object replacement is not enabled and enableReplaceObject(true) is called.
==========
protected boolean enableReplaceObject(boolean enable) throws SecurityException
...
If enable is true, and there is a security manager installed, this method first calls the security manager's checkPermission method....
==========
This does not match the implementation. The implementation will only issue the security check if object replacement is not enabled and enableReplaceObject(true) is called.
- backported by
-
JDK-8177614 clarify security checks in ObjectInputStream.enableResolveObject and ObjectOutputStream.enableReplaceObject
-
- Resolved
-