[MATH-679] Integer overflow in OpenMapRealMatrix - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: 2.2
Fix Version/s: 3.0
Component/s: None
Labels:
None

Description

computeKey() has an integer overflow. Since it is a sparse matrix, this is quite easily encountered long before heap space is exhausted. The attached code demonstrates the problem, which could potentially be a security vulnerability (for example, if one was to use this matrix to store access control information).

Workaround: never create an OpenMapRealMatrix with more cells than are addressable with an int.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

Flaw.java
03/Oct/11 05:37
0.3 kB
Christopher Berner

Activity

People

Assignee:: Unassigned

Reporter:: Christopher Berner

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 03/Oct/11 05:36

Updated:: 24/Mar/12 16:16

Resolved:: 10/Oct/11 19:57