ThreeTen/threetenbp

ThreeTen/threetenbp

www.threeten.org

Releases41

Frequency3 months 3 weeks

Last Release 10 months ago

Stars562

Backport of functionality based on JSR-310 to Java SE 6 and 7. This is NOT an implementation of JSR-310.

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-23081 ↗	Apr 8, 2024Monday, 8 April 2024, 23:15	3.3 LOW	—
ThreeTen Backport v1.6.8 was discovered to contain a NullPointerException via the component org.threeten.bp.LocalDate::compareTo(ChronoLocalDate). NOTE: this is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerability. The submission may have been based on a tool that is not sufficiently robust for vulnerability identification.
CVE-2024-23082 ↗	Apr 8, 2024Monday, 8 April 2024, 18:15	—	—
ThreeTen Backport v1.6.8 was discovered to contain an integer overflow via the component org.threeten.bp.format.DateTimeFormatter::parse(CharSequence, ParsePosition). NOTE: this is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerability. The submission may have been based on a tool that is not sufficiently robust for vulnerability identification.