[Sablevm-bugs] [ sablevm-Bugs-787160 ] buffer overflow in getDefaultTimeZoneId
Brought to you by:
egagnon
Menu
▾
▴
[Sablevm-bugs] [ sablevm-Bugs-787160 ] buffer overflow in getDefaultTimeZoneId
|
From: SourceForge.net <no...@so...> - 2004-03-26 22:04:20
|
Bugs item #787160, was opened at 2003-08-12 01:09 Message generated for change (Comment added) made by davidbelanger You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=105523&aid=787160&group_id=5523 Category: Execution Problem Group: SablePath >Status: Closed Resolution: None Priority: 5 Submitted By: David Bélanger (davidbelanger) >Assigned to: David Bélanger (davidbelanger) Summary: buffer overflow in getDefaultTimeZoneId Initial Comment: There is a buffer overflow that occurs in java_util_TimeZone.c, function Java_java_util_TimeZone_getDefaultTimeZoneId on Mac OS X. I think the timezone info is incorrectly computed, leading to a string longer than the buffer. In any case, snprintf should have been used instead of sprintf. The same problem may occur on other platforms. David ---------------------------------------------------------------------- >Comment By: David Bélanger (davidbelanger) Date: 2004-03-26 17:04 Message: Logged In: YES user_id=694080 This one has been fixed in CP a long time ago and is also in staging. David ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=105523&aid=787160&group_id=5523 |
