CVE-2022-3676

Published
View on NVD ↗
CVSS v3
6.5
MEDIUM
CVSS v2
N/A
Affected
2
PROJECTS

Description

In Eclipse Openj9 before version 0.35.0, interface calls can be inlined without a runtime type check. Malicious bytecode could make use of this inlining to access or modify memory via an incompatible type.

eclipse-omr/omr
eclipse-omr/omr
Eclipse OMR™ Cross platform components for building reliable, high performance language runtimes
GitHubGitHub
999
eclipse-openj9/openj9
eclipse-openj9/openj9
Eclipse OpenJ9: A Java Virtual Machine for OpenJDK that's optimized for small footprint, fast start-up, and high throughput. Builds on Eclipse OMR (https://github.com/eclipse/omr) and combines with the Extensions for OpenJDK for OpenJ9 repo.
GitHubGitHub
3.52K