In Eclipse OpenJ9 prior to the 0.14.0 release, the Java bytecode verifier incorrectly allows a method to execute past the end of bytecode array causing crashes. Eclipse OpenJ9 v0.14.0 correctly detects this case and rejects the attempted class load.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/108094 | Third Party Advisory VDB Entry |
https://access.redhat.com/errata/RHSA-2019:1163 | Third Party Advisory |
https://access.redhat.com/errata/RHSA-2019:1164 | Third Party Advisory |
https://access.redhat.com/errata/RHSA-2019:1165 | Third Party Advisory |
https://access.redhat.com/errata/RHSA-2019:1166 | Third Party Advisory |
https://access.redhat.com/errata/RHSA-2019:1238 | Third Party Advisory |
https://access.redhat.com/errata/RHSA-2019:1325 | Third Party Advisory |
https://bugs.eclipse.org/bugs/show_bug.cgi?id=545588 | Issue Tracking Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: eclipse
Published: 2019-04-19T13:43:31
Updated: 2019-06-04T16:06:03
Reserved: 2019-03-27T00:00:00
Link: CVE-2019-10245
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-04-19T14:29:00.227
Modified: 2021-10-28T13:40:45.307
Link: CVE-2019-10245
JSON object: View
Redhat Information
No data.