[CXF-3576] Potential overflow for lifetime calculation in STSClient - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 2.4
Fix Version/s: 2.4.1
Component/s: WS-* Components
Labels:
None

Description

This code performs integer multiply and then converts the result to a long:
expirationTime.setTime(creationTime.getTime() + (ttl * 1000));

Fix:
expirationTime.setTime(creationTime.getTime() + (ttl * 1000L));

Attachments

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

STSClient.patch
08/Jun/11 06:25
1 kB
Oliver Wulff
patch.diff
07/Jun/11 21:31
0.3 kB
Oliver Wulff

Activity

People

Assignee:: Christian Schneider

Reporter:: Oliver Wulff

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 07/Jun/11 21:07

Updated:: 08/Aug/11 14:43

Resolved:: 08/Jun/11 07:29