Hi Mark, On 08/29/2012 06:24 AM, Mark Wielaard wrote: > I have only very lightly tested it but this code is somewhat hairy, so > some extra pair of eyes and some more testing would not be a bad thing. > I do think it makes sense to try to do an icedtea/openjdk release with > this (or some other/better) fix ASAP because it seems to be actively > exploited in the wild.
The patch looks sensible to me. It adds back the checks that existed in older versions of the code so it seems safe too. I ran all the java.beans jtreg tests and they pass with this change too. Cheers, Omair
