Details
-
Bug
-
Status: Resolved
-
Critical
-
Resolution: Fixed
-
4.5.4
-
None
-
None
Description
4.5.4 has the following line in SystemDefaultCredentialsProvider
final String protocol = origin != null ? origin.getSchemeName() : (origin.getPort() == 443 ? "https" : "http");
So 'origin' is still accessed when it is determined that it is null.