Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8165936

Potential Heap buffer overflow when seaching timezone info files

    XMLWordPrintable

Details

    • b10
    • b137
    • linux, solaris

    Backports

      Description

        When looking for platform-specific timezone info files, readdir_r() is used to list the content of the directory containing the zoneinfo file. The output buffer allocated is too short, which may result in readdir_r() to write beyond the end of the output buffer.

        Attachments

          Issue Links

            backported by

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8166180 Potential Heap buffer overflow when seaching timezone info files

            • P3 - Major loss of function.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8246987 Potential Heap buffer overflow when seaching timezone info files

            • P3 - Major loss of function.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8250251 Potential Heap buffer overflow when seaching timezone info files

            • P3 - Major loss of function.
            • Resolved
            relates to

            Bug - A problem which impairs or prevents the functions of the product. JDK-7092679 (tz) Java getting wrong timezone/DST info on Solaris 11

            • P3 - Major loss of function.
            • Resolved

            Bug - A problem which impairs or prevents the functions of the product. JDK-8166148 Fix for JDK-8165936 broke Solaris builds

            • P1 - Blocks development and/or testing work, production could not run.
            • Closed

            Activity

              People

                stuefe Thomas Stuefe
                stuefe Thomas Stuefe
                Votes:
                0 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                  Created:
                  Updated:
                  Resolved: