Back to search
CVE-2018-12547
Published: Feb 11, 2019
Modified: Aug 5, 2024
PUBLISHED
Description
In Eclipse OpenJ9, prior to the 0.12.0 release, the jio_snprintf() and jio_vsnprintf() native methods ignored the length parameter. This affects existing APIs that called the functions to exceed the allocated buffer. This functions were not directly callable by non-native user code.
| Vendor | Product | Versions |
|---|---|---|
The Eclipse Foundation | Eclipse OpenJ9 | affected unspecified - < 0.12.0 |
Weaknesses (CWE)
References
RHSA-2019:0474
vendor-advisory
x_refsource_REDHAT
https://bugs.eclipse.org/bugs/show_bug.cgi?id=543659
x_refsource_CONFIRM
RHSA-2019:0469
vendor-advisory
x_refsource_REDHAT
RHSA-2019:0473
vendor-advisory
x_refsource_REDHAT
RHSA-2019:0472
vendor-advisory
x_refsource_REDHAT
RHSA-2019:0640
vendor-advisory
x_refsource_REDHAT
RHSA-2019:1238
vendor-advisory
x_refsource_REDHAT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now