Avian JVM FileOutputStream.write() Integer Overflow

November 13, 2020

Posted by Pietro Oliva via Fulldisclosure on Nov 12

Vulnerability title: Avian JVM FileOutputStream.write() Integer Overflow
Author: Pietro Oliva
Vendor: ReadyTalk
Product: Avian JVM
Affected version: 1.2.0 before 27th October 2020
Fixed Version: 1.2.0 since 27th October 2020

Description:
The issue is located in the FileOutputStream.write() method defined in
FileOutputStream.java, where a boundary check is performed in order to prevent
out-of-bounds memory read/write. However, this check…

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Patreon

Original Source
Tags: , , , , , , , , ,

You may have missed

CISA Logo

CISA: Cisco Releases Security Advisories for Cisco Integrated Management Controller

April 26, 2024
CISA Logo

CISA: CISA and Partners Release Advisory on Akira Ransomware

April 26, 2024
CISA Logo

CISA: CISA Releases Four Industrial Control Systems Advisories

April 26, 2024
CISA Logo

CISA: CISA Releases Three Industrial Control Systems Advisories

April 26, 2024
CISA Logo

CISA: Oracle Releases Critical Patch Update Advisory for April 2024

April 26, 2024