On Fri, 26 Apr 2024 07:43:01 GMT, Adam Sotona wrote:
>> ClassFile API dives into the nested constant pool entries without type
>> restrictions, while parsing a class file. Validation of the entry is
>> performed post-parsing. Specifically corrupted constant pool entry may cause
>> infinite loo
On Thu, 25 Apr 2024 20:16:09 GMT, Paul Sandoz wrote:
> It could be two tags, a lower and upper bound, because TAG_FIELDREF,
> TAG_METHODREF, and TAG_INTERFACEMETHODREF are consecutive values (9 to 11).
OK, I've implemented it with lower and upper bound tags. Thanks!
-
PR Comment:
> ClassFile API dives into the nested constant pool entries without type
> restrictions, while parsing a class file. Validation of the entry is
> performed post-parsing. Specifically corrupted constant pool entry may cause
> infinite loop during parsing and throws SOE.
> This patch resolves the