Uploaded image for project: 'Apache Avro'
  1. Apache Avro
  2. AVRO-2179

Malformed data, the BinaryDecoder allocates large arrays

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Critical
    • Resolution: Fixed
    • 1.8.2
    • 1.9.0
    • java
    • None

    Description

      Recentlly I use avro find it has this problem:The memory suddenly explode and trigger the fullgc, So I dump the memory file. And then I use jvisualvm tool to analysis I found a org.apache.avro.util.Utf8 object and the bytes array length was over 1610470037.

      The method of readInt() shouldn't over limit, So I think it should be restricted.

      Attachments

        1. image2018-5-11_21-27-56.png
          44 kB
          Jonny
        2. image2018-5-10_11-7-40.png
          233 kB
          Jonny

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. AVRO-3049 Java: BinaryDecoder lacks checks on bytes array length

          • Major - Major loss of function.
          • Resolved
          links to

          Web Link GitHub Pull Request #311

          Activity

            People

              dkulp Daniel Kulp
              zhy4013 Jonny
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: