[jdk11u-dev] RFR: 8299677: Formatter.format might take a long time to format an integer or floating-point [v9]
Aleksey Shipilev
shade at openjdk.org
Thu Apr 4 08:21:21 UTC 2024
On Wed, 3 Apr 2024 23:22:25 GMT, Paul Hohensee <phh at openjdk.org> wrote:
>> Simple almost clean backport of a potential DOS attack vector fix. Backport from JDK 17 (see https://github.com/openjdk/jdk17u-dev/pull/1077) is clean. Copyright date conflict, plus changed
>>
>> Flags.contains(f, Flags.ZERO_PAD)
>>
>> to
>>
>> f.contains(Flags.ZERO_PAD)
>>
>> Passes new and old Formatter tests.
>
> Paul Hohensee has updated the pull request incrementally with one additional commit since the last revision:
>
> Merge
This looks like a clean backport now.
-------------
Marked as reviewed by shade (Reviewer).
PR Review: https://git.openjdk.org/jdk11u-dev/pull/1667#pullrequestreview-1979073643
More information about the jdk-updates-dev
mailing list