[Sablevm-bugs] [ sablevm-Bugs-787160 ] buffer overflow in getDefaultTimeZoneId

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Bugs item #787160, was opened at 2003-08-12 01:09
Message generated for change (Tracker Item Submitted) made by Item Submitter
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=105523&aid=787160&group_id=5523

Category: Execution Problem
Group: SablePath
Status: Open
Resolution: None
Priority: 5
Submitted By: David Bélanger (davidbelanger)
Assigned to: Nobody/Anonymous (nobody)
Summary: buffer overflow in getDefaultTimeZoneId

Initial Comment:

There is a buffer overflow that occurs in
java_util_TimeZone.c, function
Java_java_util_TimeZone_getDefaultTimeZoneId on Mac OS
X.  I think the timezone info is incorrectly computed,
leading to a string longer than the buffer.  In any
case, snprintf should have been used instead of sprintf.

The same problem may occur on other platforms.

David

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=105523&aid=787160&group_id=5523