DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://issues.apache.org/bugzilla/show_bug.cgi?id=32205>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=32205 A security issue with public mutable static fields in BECL Summary: A security issue with public mutable static fields in BECL Product: BCEL Version: unspecified Platform: Other OS/Version: Other Status: NEW Severity: Normal Priority: Other Component: Main AssignedTo: [EMAIL PROTECTED] ReportedBy: [EMAIL PROTECTED] There is a security concern with those public mutable static fields in BCEL. According to Sun's security code guidelines (http://java.sun.com/security/seccodeguide.html), those public mutable static fields may cause "some unintended interactions between supposedly independent subsystems". In J2sdk1.5, becl code is distributed within rt.jar, if one application changes those fields, as long as one JVM alive, the second application run in the same JVM will have some unintended behavior. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
