CVE-2018-12547

CVE-2018-12547

In Eclipse OpenJ9, prior to the 0.12.0 release, the jio_snprintf() and jio_vsnprintf() native methods ignored the length parameter. This affects existing APIs that called the functions to exceed the allocated buffer. This functions were not directly callable by non-native user code.

Source: CVE-2018-12547

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다