Описание
In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may return an incorrect value which has wrapped around. From 0.48 the value is correct but may be truncated to include a smaller number of characters.
Ссылки
- Issue TrackingPatch
- Release Notes
- Issue TrackingVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 0.8.0 (включая) до 0.48.0 (исключая)
cpe:2.3:a:eclipse:openj9:*:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00303
Низкий
3.7 Low
CVSS3
5.3 Medium
CVSS3
Дефекты
CWE-190
CWE-190
Связанные уязвимости
CVSS3: 3.7
github
около 1 года назад
In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may return an incorrect value which has wrapped around. From 0.48 the value is correct but may be truncated to include a smaller number of characters.
EPSS
Процентиль: 53%
0.00303
Низкий
3.7 Low
CVSS3
5.3 Medium
CVSS3
Дефекты
CWE-190
CWE-190