< Back to JetLib.com

jetlib.sec » Tags » util

« Expand/Collapse

1 item tagged "util"

Related tags: zip [+], segmentation fault [+], oracle java [+], java [+], denial of service [+]

February 16, 2012
18:37
java.util.zip Denial Of Service
» ‎ Packet Storm Security Advisories

PRE-CERT Security Advisory - The function countCENHeaders() in zip_util.c of the java.util.zip implementation contains an off-by-one bug. The bug can be exploited via corrupted ZIP files to cause an endless recursion. The endless recursion results in a segmentation fault of the JVM. Oracle Java SE and IcedTea6 have multiple affected versions.
Tags: util java zip oracle-java segmentation-fault denial-of-service