Bug 563998 (CVE-2019-17639) - Undefined return value
Summary: Undefined return value
Status: RESOLVED FIXED
Alias: CVE-2019-17639
Product: openj9
Classification: Technology
Component: General (show other bugs)
Version: unspecified   Edit
Hardware: Power PC All
: P3 normal
Target Milestone: ---   Edit
Assignee: Project Inbox CLA
QA Contact:
URL: https://cve.mitre.org/cgi-bin/cvename...
Whiteboard:
Keywords: security
Depends on:
Blocks:
 
Reported: 2020-06-05 12:32 EDT by Peter Shipton CLA
Modified: 2020-10-22 21:46 EDT (History)
1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Peter Shipton CLA 2020-06-05 12:32:26 EDT 

    


    


      



        
          Comment 1
        

        
          Peter Shipton CLA

        

        
        

        
          2020-06-05 12:36:03 EDT
        

      






project: Eclipse OpenJ9
versions: initial - 0.21

cwe: CWE-843
http://cwe.mitre.org/data/definitions/843.html
The program allocates or initializes a resource such as a pointer, object, or variable using one type, but it later accesses that resource using a type that is incompatible with the original type.

summary:
In Eclipse OpenJ9 prior to version 0.21 on Power platforms, calling the System.arraycopy method with a length longer than the length of the source or destination array can, in certain specially crafted code patterns, cause the current method to return prematurely with an undefined return value. This allows whatever value happens to be in the return register at that time to be used as if it matches the method's declared return type.

    


    


      



        
          Comment 2
        

        
          Wayne Beaton CLA

        

        
        

        
          2020-07-15 11:04:04 EDT
        

      






Pull request: https://github.com/CVEProject/cvelist/pull/4312