<!-- 
RSS generated by JIRA (9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66) at Thu Feb 08 08:55:39 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary append 'field=key&field=summary' to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>MongoDB Jira</title>
    <link>https://jira.mongodb.org</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>9.7.1</version>
        <build-number>970001</build-number>
        <build-date>13-04-2023</build-date>
    </build-info>


<item>
            <title>[JAVA-1847] Response class does not sanity check values read from network leading to potential OutOfMemory exceptions</title>
                <link>https://jira.mongodb.org/browse/JAVA-1847</link>
                <project id="10006" key="JAVA">Java Driver</project>
                    <description>&lt;p&gt;&lt;tt&gt;class Response&lt;/tt&gt; (&lt;a href=&quot;https://github.com/mongodb/mongo-java-driver/blob/r2.12.2/src/main/com/mongodb/Response.java&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;&lt;tt&gt;com.mongodb.Response&lt;/tt&gt;&lt;/a&gt;) reads data from the network to build up a response object for later processing. On &lt;a href=&quot;https://github.com/mongodb/mongo-java-driver/blob/r2.12.2/src/main/com/mongodb/Response.java#L70&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;line 70&lt;/a&gt; it reads an integer into &lt;tt&gt;_num&lt;/tt&gt; which is later used to create an &lt;tt&gt;ArrayList&lt;/tt&gt; (&lt;a href=&quot;https://github.com/mongodb/mongo-java-driver/blob/r2.12.2/src/main/com/mongodb/Response.java#L78&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;line 78&lt;/a&gt;). This value however is not sanity checked which can lead to an OOM exception being thrown.&lt;/p&gt;

&lt;p&gt;This affects at least versions 2.12.2 of the driver. The code for the 3.0 driver no longer contains this class but the new implementation should also contain a sanity check for this type of issue.&lt;/p&gt;</description>
                <environment></environment>
        <key id="207257">JAVA-1847</key>
            <summary>Response class does not sanity check values read from network leading to potential OutOfMemory exceptions</summary>
                <type id="1" iconUrl="https://jira.mongodb.org/secure/viewavatar?size=xsmall&amp;avatarId=14703&amp;avatarType=issuetype">Bug</type>
                                            <priority id="3" iconUrl="https://jira.mongodb.org/images/icons/priorities/major.svg">Major - P3</priority>
                        <status id="6" iconUrl="https://jira.mongodb.org/images/icons/statuses/closed.png" description="The issue is considered finished, the resolution is correct. Issues which are closed can be reopened.">Closed</status>
                    <statusCategory id="3" key="done" colorName="success"/>
                                    <resolution id="5">Cannot Reproduce</resolution>
                                        <assignee username="-1">Unassigned</assignee>
                                    <reporter username="ronan.bohan@mongodb.com">Ronan Bohan</reporter>
                        <labels>
                    </labels>
                <created>Fri, 29 May 2015 08:22:49 +0000</created>
                <updated>Wed, 24 Jun 2015 13:24:58 +0000</updated>
                            <resolved>Wed, 24 Jun 2015 12:16:11 +0000</resolved>
                                    <version>2.12.2</version>
                                                    <component>Error Handling</component>
                                        <votes>0</votes>
                                    <watches>2</watches>
                                                                                                                    <issuelinks>
                            <issuelinktype id="10011">
                    <name>Depends</name>
                                                                <inwardlinks description="is depended on by">
                                                        </inwardlinks>
                                    </issuelinktype>
                    </issuelinks>
                <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_15850" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummary">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_12550" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2|hs9sun:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10558" key="com.pyxis.greenhopper.jira:gh-global-rank">
                        <customfieldname>Rank (Obsolete)</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>9223372036854775807</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            </customfields>
    </item>
</channel>
</rss>