In Eclipse OpenJ9, prior to the 0.12.0 release, the jio_snprintf() and jio_vsnprintf() native methods ignored the length parameter. This affects existing APIs that called the functions to exceed the allocated buffer. This functions were not directly callable by non-native user code.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: eclipse

Published: 2019-02-11T15:00:00

Updated: 2024-08-05T08:38:05.983Z

Reserved: 2018-06-18T00:00:00

Link: CVE-2018-12547

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-02-11T15:29:00.660

Modified: 2024-11-21T03:45:24.943

Link: CVE-2018-12547

cve-icon Redhat

Severity : Critical

Publid Date: 2019-03-01T00:00:00Z

Links: CVE-2018-12547 - Bugzilla