Menu
▾
▴
[Sblim-commit] jsr48-client sblim-cim-client2.properties, 1.30, 1.31 NEWS, 1.324, 1.325
|
From: Dave B. <bla...@us...> - 2012-11-15 14:46:07
|
Update of /cvsroot/sblim/jsr48-client
In directory vz-cvs-3.sog:/tmp/cvs-serv26355
Modified Files:
sblim-cim-client2.properties NEWS
Log Message:
3572993 parseDouble("2.2250738585072012e-308") DoS vulnerability
Index: NEWS
===================================================================
RCS file: /cvsroot/sblim/jsr48-client/NEWS,v
retrieving revision 1.324
retrieving revision 1.325
diff -u -d -r1.324 -r1.325
--- NEWS 1 Oct 2012 22:30:38 -0000 1.324
+++ NEWS 15 Nov 2012 14:46:05 -0000 1.325
@@ -1,5 +1,6 @@
Changes in HEAD
================
+3572993 parseDouble("2.2250738585072012e-308") DoS vulnerability
3567433 Add links to top of detailed release history HTML
Version 2.2.0
Index: sblim-cim-client2.properties
===================================================================
RCS file: /cvsroot/sblim/jsr48-client/sblim-cim-client2.properties,v
retrieving revision 1.30
retrieving revision 1.31
diff -u -d -r1.30 -r1.31
--- sblim-cim-client2.properties 10 Sep 2012 10:18:44 -0000 1.30
+++ sblim-cim-client2.properties 15 Nov 2012 14:46:05 -0000 1.31
@@ -729,4 +729,18 @@
# Recognition: On next creation of a WBEMListener
# Default: false
#
-#sblim.wbem.listenerAddSenderIPAddress=false
\ No newline at end of file
+#sblim.wbem.listenerAddSenderIPAddress=false
+
+# If set to true, numeric string values passed to the java.lang.Double
+# constructor or its parseDouble method will be checked to make sure they
+# are not in the range that hangs Java 6- (see Sun bug 4421494). If
+# set to false, the string values will not be checked.
+#
+# Note: This property should only be set to true if running on Java 5 or
+# Java 6 prior to update 24.
+#
+# Type: Boolean
+# Recognition: Startup
+# Default: true
+#
+#sblim.wbem.verifyJavaLangDoubleStrings=true
\ No newline at end of file
|
