IcedTea6 1.8pre (6b18~pre3-0ubuntu1) buffer overflow, possible crasher
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openjdk-6 (Ubuntu) |
Fix Released
|
Medium
|
Unassigned |
Bug Description
See Mozilla bug https:/
(Apologies for this report, I'm not the person who discovered this bug and am relaying the discoverer's information.)
1) Ubuntu 10.04 b1
2) IcedTea6 1.8pre (6b18~pre3-
3) No buffer overflow
4) Buffer overflow
See the steps to reproduce in the Mozilla bug; the buffer overflow is more dramatic in Firefox nightlies with out-of-process plugins because it always results in a crash in the plugin subprocesses. It will only sometimes result in a crash of the Firefox process.
It's easier to just paste a fix for this bug than describe it more. The diff is against http://
Marking security vulnerability for safety; I think this would be hard to exploit.
Related branches
security vulnerability: | yes → no |
visibility: | private → public |
affects: | ubuntu → openjdk-6 (Ubuntu) |
Changed in openjdk-6 (Ubuntu): | |
status: | New → Confirmed |
status: | Confirmed → Triaged |
importance: | Undecided → Medium |
I should add that a workaround for this bug is to only run the IcedTea plugin in an environment with ICEDTEAPLUGIN_ DEBUG=1.