Avian JVM FileOutputStream.write() Integer Overflow

Click the icon to Follow me:- twitterTelegramRedditDiscord

Posted by Pietro Oliva via Fulldisclosure on Nov 12

Vulnerability title: Avian JVM FileOutputStream.write() Integer Overflow
Author: Pietro Oliva
Vendor: ReadyTalk
Product: Avian JVM
Affected version: 1.2.0 before 27th October 2020
Fixed Version: 1.2.0 since 27th October 2020

Description:
The issue is located in the FileOutputStream.write() method defined in
FileOutputStream.java, where a boundary check is performed in order to prevent
out-of-bounds memory read/write. However, this check…

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Patreon

Original Source