stan/jdk-24
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
758 Commits 2 Branches 0 Tags 1.2 GiB
006e84fc77
Commit Graph

429 Commits

Author SHA1 Message Date
Vinnie Ryan
006e84fc77 6737315: LDAP serialized data vulnerability 
Reviewed-by: alanb
 2009-03-10 18:43:00 +00:00
Daniel Fuchs
4ca96d3f88 Merge 2009-03-10 14:29:47 +01:00
Daniel Fuchs
f17489b0d4 Merge 2009-03-10 12:55:40 +01:00
Daniel Fuchs
0de7d29a95 Merge 2009-03-10 12:47:27 +01:00
Daniel Fuchs
28e94fa2a3 Merge 2009-03-10 12:36:55 +01:00
Daniel Fuchs
dd8a3b1a34 Merge 2009-03-10 12:28:00 +01:00
Michael McMahon
a0ec52da33 6630639: lightweight HttpServer leaks file descriptors on no-data connections 
Not cleaning up no-data connections properly

Reviewed-by: chegar
 2009-03-10 03:18:22 -07:00
Daniel Fuchs
576a962dcb 6721651: Security problem with out-of-the-box management 
Reviewed-by: emcmanus, lmalvent
 2009-03-09 23:50:11 +01:00
Daniel Fuchs
fbcaea5fc1 6610896: JMX Monitor handles thread groups incorrectly 
Reviewed-by: emcmanus
 2009-03-09 22:49:21 +01:00
Daniel Fuchs
b047886b2f 6610888: Potential use of cleared of incorrect acc in JMX Monitor 
Reviewed-by: emcmanus
 2009-03-09 22:34:08 +01:00
Daniel Fuchs
2f5bb727a1 6691246: Thread context class loader can be set using JMX remote ClientNotifForwarded 
Reviewed-by: emcmanus
 2009-03-09 22:17:52 +01:00
Daniel Fuchs
605e712ecd 6656633: getNotificationInfo methods static mutable 
Reviewed-by: emcmanus, jfdenise
 2009-03-09 21:49:56 +01:00
Andrew Brygin
6c11535cdd 6804997: JWS GIF Decoding Heap Corruption [V-r687oxuocp] 
Reviewed-by: prr
 2009-03-06 12:40:38 +03:00
Andrew Brygin
d033b16582 6804998: JRE GIF Decoding Heap Corruption [V-y6g5jlm8e1] 
Reviewed-by: prr
 2009-03-05 19:36:51 +03:00
Phil Race
de4c8e0eb5 2163516: Font.createFont can be persuaded to leak temporary files 
Reviewed-by: igor
 2009-03-03 16:10:37 -08:00
Andrew Brygin
22f94de7e6 6804996: JWS PNG Decoding Integer Overflow [V-flrhat2ln8] 
Reviewed-by: prr
 2009-02-20 13:48:32 +03:00
Kumar Srinivasan
dcbd65a1c3 6792554: Java JAR Pack200 header checks are insufficent 
Added several checks to ensure that the values read from the headers are consistent

Reviewed-by: jrose
 2009-02-18 14:14:03 -08:00
Phil Race
c357cbe4e0 6632886: Font.createFont can be persuaded to leak temporary files 
6522586: Enforce limits on Font creation
6652929: Font.createFont(int,File) trusts File.getPath

Reviewed-by: igor
 2009-01-05 11:28:43 -08:00
Weijun Wang
e33cec202f 6717680: LdapCtx does not close the connection if initialization fails 
Reviewed-by: vinnie, xuelei
 2008-12-30 10:42:45 +08:00
Phil Race
14b56dc3a0 6652463: MediaSize constructors allow to redefine the mapping of standard MediaSizeName values 
Reviewed-by: igor, jgodinez
 2008-12-24 15:48:59 -08:00
Andrew Brygin
b44236abdf 6766136: corrupted gif image may cause crash in java splashscreen library 
Reviewed-by: prr, art
 2008-12-03 13:34:50 +03:00
Kumar Srinivasan
92992b2e76 6755943: Java JAR Pack200 Decompression should enforce stricter header checks 
Fixes a core dump when fed with a faulty pack file and related malicious take over

Reviewed-by: jrose
 2008-10-17 09:43:30 -07:00
Alan Bateman
01bf987244 6721753: File.createTempFile produces guessable file names 
Reviewed-by: sherman
 2008-10-09 21:12:56 +01:00
Andrew Brygin
3a902871ef 6726779: ConvolveOp on USHORT raster can cause the JVM crash 
Reviewed-by: igor, prr
 2008-10-02 20:37:43 +04:00
Masayoshi Okutsu
3729356740 6734167: Calendar.readObject allows elevation of privileges 
Reviewed-by: peytoia
 2008-10-02 16:49:33 +09:00
Kumar Srinivasan
3a7a9cc557 6733959: Insufficient checks for "Main-Class" manifest entry in JAR files 
Fixes a buffer overrun problem with a very long Main-Class attribute.

Reviewed-by: darcy
 2008-09-04 09:43:32 -07:00
Weijun Wang
6aab63dd37 6588160: jaas krb5 client leaks OS-level UDP sockets (all platforms) 
Reviewed-by: jccollet, chegar
 2008-10-01 10:01:45 +08:00
Bradford Wetmore
87a408a846 6497740: Limit the size of RSA public keys 
Reviewed-by: andreas, valeriep, vinnie
 2008-08-22 18:48:00 -07:00
Jim Holmlund
6f5da73160 Merge 2008-07-09 16:57:39 -07:00
Jim Holmlund
4c95421013 6700889: Thread resume invalidates all stack frames, even from other threads 
6701700: MonitorInfo objects aren't invalidated when the owning thread is resumed

Don't inform ThreadListeners for thread T1 when some other thread is resumed, and MonitoryIfoImpl must add itself as a ThreadListener

Reviewed-by: dcubed
 2008-07-09 13:43:26 -07:00
Eamonn McManus
4333dd3520 6323980: Annotations to simplify MBean development 
Reviewed-by: jfdenise, dfuchs
 2008-07-09 10:36:07 +02:00
Eamonn McManus
5967d518b5 6601652: MXBeans: no IllegalArgumentException in the ex. chain for SortedSet/Map with a non-null comparator() 
Forward-port this bug fix from JDK 6

Reviewed-by: dfuchs, lmalvent
 2008-07-04 18:55:37 +02:00
Swamy Venkataramanappa
a9cd129c27 Merge 2008-07-02 09:37:42 -07:00
Jim Holmlund
1a0c261469 2157677: ClassPrepareRequest.addSourceNameFilter() does not behave as documented 
Add proper handling of JVMTI errors.

Reviewed-by: tbell
 2008-07-01 09:23:00 -07:00
Xueming Shen
cbe7dc576f Merge 2008-06-30 14:11:49 -07:00
Xueming Shen
dd2dfec9f5 6675856: Open charset tests 
Moved non-confidiential test cased from closed repo to open repo

Reviewed-by: martin
 2008-06-30 14:06:34 -07:00
Bradford Wetmore
9f99870d74 Merge 2008-06-29 00:25:59 -07:00
Xueming Shen
35038e62cd 6541631: (fc) java/nio/channels/Filechannel/LongTransferTest.java should clean up after itself 
Should close the channel before delete the file

Reviewed-by: alanb
 2008-06-27 12:09:37 -07:00
Xueming Shen
0d5d6271b3 Merge 2008-06-27 09:05:11 -07:00
Xueming Shen
84b91226e3 6645197: (so) Timed read with socket adaptor throws ClosedSelectorException if temporary selector GC'ed 
Temporary selector for timeout is not protected from possilbe GC when used first time

Reviewed-by: alanb
 2008-06-27 08:32:30 -07:00
Bradford Wetmore
a70b685713 Merge 2008-06-26 00:26:15 -07:00
Tim Bell
1410975f4a Merge 2008-06-25 23:29:39 -07:00
Tim Bell
1baead8a01 Merge 2008-06-25 16:44:55 -07:00
Swamy Venkataramanappa
72d83e3708 6614556: null location for MonitorContendedEnterEvent 
Reviewed-by: jjh
 2008-06-25 16:33:59 -07:00
Xueming Shen
827decba87 6481955: Uncanonicalized absolute filepath with length 248-260 no longer works (win) 
Uncanonicalized absolute filepath with length 248-260 no longer works (win)

Reviewed-by: alanb
 2008-06-25 13:58:22 -07:00
Lana Steuck
69fafff993 Merge 2008-06-25 08:54:54 -07:00
Xueming Shen
d1ff48eb56 4752069: (cs spec) BOM should not be ignored in UTF-16 charsets 
API doc update regarding BOM hanlding in UTF-16 charsets

Reviewed-by: alanb
 2008-06-25 08:27:06 -07:00
Tim Bell
0ae2baec78 Merge 2008-06-20 16:34:34 -07:00
Xiomara Jayasena
fe4c7083aa Added tag jdk7-b29 for changeset 53d8346cf189 2008-06-20 08:45:07 -07:00
Weijun Wang
5e1c37cd11 6716534: Krb5LoginModule has not cleaned temp info between authentication attempts 
Reviewed-by: valeriep
 2008-06-20 12:05:02 +08:00