[jdk11u-dev] RFR: 8299677: Formatter.format might take a long time to format an integer or floating-point [v4]
Paul Hohensee
phh at openjdk.org
Thu Apr 27 17:13:53 UTC 2023
> Simple almost clean backport of a potential DOS attack vector fix. Backport from JDK 17 (see https://github.com/openjdk/jdk17u-dev/pull/1077) is clean. Copyright date conflict, plus changed
>
> Flags.contains(f, Flags.ZERO_PAD)
>
> to
>
> f.contains(Flags.ZERO_PAD)
>
> Passes new and old Formatter tests.
Paul Hohensee has updated the pull request incrementally with two additional commits since the last revision:
- Merge master
- Merge master
-------------
Changes:
- all: https://git.openjdk.org/jdk11u-dev/pull/1667/files
- new: https://git.openjdk.org/jdk11u-dev/pull/1667/files/cae5c9d8..883ef6f2
Webrevs:
- full: https://webrevs.openjdk.org/?repo=jdk11u-dev&pr=1667&range=03
- incr: https://webrevs.openjdk.org/?repo=jdk11u-dev&pr=1667&range=02-03
Stats: 25 lines in 2 files changed: 10 ins; 6 del; 9 mod
Patch: https://git.openjdk.org/jdk11u-dev/pull/1667.diff
Fetch: git fetch https://git.openjdk.org/jdk11u-dev.git pull/1667/head:pull/1667
PR: https://git.openjdk.org/jdk11u-dev/pull/1667
More information about the jdk-updates-dev
mailing list