Avian JVM FileOutputStream.write() Integer Overflow
Posted by Pietro Oliva via Fulldisclosure on Nov 12
Vulnerability title: Avian JVM FileOutputStream.write() Integer Overflow
Author: Pietro Oliva
Vendor: ReadyTalk
Product: Avian JVM
Affected version: 1.2.0 before 27th October 2020
Fixed Version: 1.2.0 since 27th October 2020
Description:
The issue is located in the FileOutputStream.write() method defined in
FileOutputStream.java, where a boundary check is performed in order to prevent
out-of-bounds memory read/write. However, this check…
If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.
