RFR: 8336667: IAE in DerInputStream.toByteArray
Weijun Wang
weijun at openjdk.org
Thu Jul 25 19:31:36 UTC 2024
On Thu, 25 Jul 2024 19:04:12 GMT, Hai-May Chao <hchao at openjdk.org> wrote:
> Nice to have new PoC.java test to cover indefinite length encoding. Looks good.
The other test -- from the bug reporter -- also contains indefinite length encoding deep inside, but the `PoC.java` test makes it more obvious what goes wrong.
-------------
PR Comment: https://git.openjdk.org/jdk/pull/20283#issuecomment-2251251438
More information about the security-dev
mailing list