CVE-2019-10245

Published: Apr 19, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

In Eclipse OpenJ9 prior to the 0.14.0 release, the Java bytecode verifier incorrectly allows a method to execute past the end of bytecode array causing crashes. Eclipse OpenJ9 v0.14.0 correctly detects this case and rejects the attempted class load.

Vendor	Product	Versions
The Eclipse Foundation	Eclipse OpenJ9	affected `unspecified - < 0.14.0`

Weaknesses (CWE)

CWE-20

References

https://bugs.eclipse.org/bugs/show_bug.cgi?id=545588

x_refsource_CONFIRM

108094

vdb-entry

x_refsource_BID

RHSA-2019:1164

vendor-advisory

x_refsource_REDHAT

RHSA-2019:1163

vendor-advisory

x_refsource_REDHAT

RHSA-2019:1165

vendor-advisory

x_refsource_REDHAT

RHSA-2019:1166

vendor-advisory

x_refsource_REDHAT

RHSA-2019:1238

vendor-advisory

x_refsource_REDHAT

RHSA-2019:1325

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-10245

Description

Affected Products

Weaknesses (CWE)

References