Bug 1463144

Summary: Race in jdwp invoker handling may lead to crashes or invalid results
Product: Red Hat Enterprise Linux 7 Reporter: Severin Gehwolf <sgehwolf>
Component: java-1.8.0-openjdkAssignee: Andrew John Hughes <ahughes>
Status: CLOSED CURRENTRELEASE QA Contact: zzambers
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 7.4CC: dbhole, jvanek
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: java-1.8.0-openjdk-1.8.0.131-12.b12.el7 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2019-03-04 09:11:46 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1284948    
Bug Blocks: 1644888    

Description Severin Gehwolf 2017-06-20 08:48:19 UTC 
Description of problem:
With bug 1284948 we've fixed an OpenJDK memory leak in the jdwp layer of the Java debugger interface. The included fix with bug 1284948 contains a potential race which may lead to crashes or invalid results. See the upstream bug for more information. On top of the fix for bug 1284948 we should also include the additional upstream fix of JDK-8181419 here:
http://hg.openjdk.java.net/jdk10/jdk10/jdk/rev/b0d1ada042b6

Version-Release number of selected component (if applicable):
java-1.8.0-openjdk-1.8.0.121-2.b13.el7
Comment 2 Andrew John Hughes 2017-07-05 07:10:50 UTC 
Included in 7.3.z and 7.4 as part of July 2017 security update.
Comment 4 Andrew John Hughes 2017-08-21 15:57:54 UTC 
7.4 has shipped.
Comment 5 Andrew John Hughes 2018-05-02 16:19:05 UTC 
7.5 has shipped.
Comment 7 Andrew John Hughes 2019-03-01 19:35:21 UTC 
7.6 has shipped.
Comment 8 Severin Gehwolf 2019-03-04 09:11:46 UTC 
I believe this has been fixed. OpenJDK in RHEL is at 8u201. The upstream bug is included in 8u162 and up.