songwanging created QPID-8059:
---------------------------------
Summary: Potential Integer Overflow
Key: QPID-8059
URL: https://issues.apache.org/jira/browse/QPID-8059
Project: Qpid
Issue Type: Bug
Components: Broker-J
Affects Versions: qpid-python-1.37.0
Reporter: songwanging
Priority: Minor
Our tool DeepTect has detected a potential integer overflow:
Path:
qpid-broker-j/broker-core/src/main/java/org/apache/qpid/server/queue/MessageContentJsonConverter.java
{code:java}
class MessageContentJsonConverter
{
...
private long _remaining;
...
private Object copyString(final String source) throws IOException{
...
limit=Math.min((int)_remaining,source.length())
..
}
...
}
{code}
In the above code snippet, "_remaining" is a long variable, if it is super
large, directly casting "_remaining" into integer will definitely lead to a
potential integer overflow.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
