6910590: Application can modify command array, in ProcessBuilder

Summary: clone array returned by List.toArray() Reviewed-by: chegar, alanb

6910590: Application can modify command array, in ProcessBuilder
Summary: clone array returned by List.toArray() Reviewed-by: chegar, alanb
be74b137 · michaelm · 80f998dc · be74b137
显示空白变更内容
内联并排

Showing with 2 addition and 0 deletion

src/share/classes/java/lang/ProcessBuilder.java src/share/classes/java/lang/ProcessBuilder.java +2 -0

未找到文件。
--- a/src/share/classes/java/lang/ProcessBuilder.java
+++ b/src/share/classes/java/lang/ProcessBuilder.java
@@ -994,6 +994,8 @@ public final class ProcessBuilder
        // Must convert to array first -- a malicious user-supplied
        // list might try to circumvent the security check.
        String[] cmdarray = command.toArray(new String[command.size()]);
+        cmdarray = cmdarray.clone();
+
        for (String arg : cmdarray)
            if (arg == null)
                throw new NullPointerException();