RFR: 8282578: AIOOBE in javax.sound.sampled.Clip [v2]
Alexander Zuev
kizune at openjdk.org
Wed Dec 7 21:23:54 UTC 2022
On Wed, 7 Dec 2022 19:29:32 GMT, Alexander Zvegintsev <azvegint at openjdk.org> wrote:
> Length check won't help here:
I think the problem here is in the original code: the array allocation was reused across 3 places and it reserved buffers for ranges and destinations that should load up the remaining of data from the offset 7, but in first two places are trying to load data from offset 6, which causes buffer overflow. The idea of my new fix here is to create a proper buffers.
-------------
PR: https://git.openjdk.org/jdk/pull/9016
More information about the client-libs-dev
mailing list