RFR: JDK-8162723 : Array index overflow in Base64 utility class
Anthony Scarpino
anthony.scarpino at oracle.com
Mon Oct 10 19:40:44 UTC 2016
On 10/10/2016 12:29 PM, Sean Mullan wrote:
> Please review this change to fix a potential array index overflow in the
> XML security Base64 encoding class. This is a direct import of the
> corresponding patch that has already been made to the Apache code.
>
> webrev: http://cr.openjdk.java.net/~mullan/webrevs/8162723/webrev.00/
>
> Thanks,
> Sean
Some of the typecasting seems excessive, but it's better to keep the
code-bases synchronized than worry about harmless nits.
Looks good to me..
Tony
More information about the security-dev
mailing list