In Eclipse Openj9 before version 0.32.0, Java 8 & 11 fail to throw the exception captured during bytecode verification when verification is triggered by a MethodHandle invocation, allowing unverified methods to be invoked using MethodHandles.
References
Link | Resource |
---|---|
https://bugs.eclipse.org/bugs/show_bug.cgi?id=579744 | Issue Tracking Third Party Advisory |
https://github.com/eclipse-openj9/openj9/pull/14935 | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: eclipse
Published: 2022-04-27T02:10:10
Updated: 2022-04-27T02:10:10
Reserved: 2021-09-13T00:00:00
Link: CVE-2021-41041
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-04-27T02:15:38.730
Modified: 2022-05-05T19:10:55.303
Link: CVE-2021-41041
JSON object: View
Redhat Information
No data.