Google Git
Sign in
android / platform / libcore / 54c9bd5
commit54c9bd54949f75f7486dff9e24443e4cbaf90ba3[log] [tgz]
authorYi Kong <yikong@google.com>Thu Jan 19 11:28:29 2017 +0100
committergitbuildkicker <android-build@google.com>Mon Feb 27 11:31:45 2017 -0800
treec1d8128ea87343558ae31180c33cd25f7f512394
parentc55ce33096e893e1f44bf7714ae72f471b5f5d95 [diff]
Pull upstream fix for CVE-2016-5552

to replace our local change that is essentially equivalent logic.

The upstream fix additionally fixes a flaw which if there is more
than one @ in the authority portion, then user and host are set to null
(ignored as malformed).

Upstream change:
  Merge

  http://hg.openjdk.java.net/jdk8u/jdk8u/jdk/rev/1e8c18ddcab1

Test: libcore.java.net.URLTest#testMultipleUserField
Test: CtsLibcoreTestCases
Bug: 33351987
Change-Id: If5ab229f951c872aecb34834f0a52153f3f0fa26
(cherry picked from commit 2e3689a5019e781fb361cc67982926beaaa969c2)
(cherry picked from commit 7247f6a70e89efb4696aaaffaf7a0325604a6e06)
2 files changed
tree: c1d8128ea87343558ae31180c33cd25f7f512394
  1. benchmarks/
  2. dalvik/
  3. dex/
  4. dom/
  5. expectations/
  6. harmony-tests/
  7. include/
  8. json/
  9. jsr166-tests/
  10. libart/
  11. luni/
  12. ojluni/
  13. support/
  14. tzdata/
  15. xml/
  16. Android.mk
  17. CleanSpec.mk
  18. Docs.mk
  19. java_tests_blacklist
  20. JavaLibrary.mk
  21. known_oj_tags.txt
  22. LICENSE
  23. NativeCode.mk
  24. non_openjdk_java_files.mk
  25. NOTICE
  26. openjdk_java_files.mk
  27. run-libcore-tests