[jboss-jira] [JBoss JIRA] (SECURITY-777) Picketbox uses non-synchronized static maps
Stefan Guilhen (JIRA)
issues at jboss.org
Mon Dec 23 11:18:33 EST 2013
[ https://issues.jboss.org/browse/SECURITY-777?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Stefan Guilhen resolved SECURITY-777.
-------------------------------------
Fix Version/s: PicketBox_4_0_20.Final
Resolution: Done
Patch has been applied to PicketBox trunk
> Picketbox uses non-synchronized static maps
> -------------------------------------------
>
> Key: SECURITY-777
> URL: https://issues.jboss.org/browse/SECURITY-777
> Project: PicketBox
> Issue Type: Bug
> Security Level: Public(Everyone can see)
> Affects Versions: PicketBox_4_0_20.Beta2
> Reporter: Stuart Douglas
> Assignee: Stefan Guilhen
> Fix For: PicketBox_4_0_20.Final
>
> Attachments: picketlink.diff
>
>
> Picketbox uses quite a few static maps as global registries (yuck), and unfortunately they are not all thread safe, which can result in races as Wildfly starts security domains asynchronously.
> Please see attached patch.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list