Redhat.comRH:CVE-2024-23081CVE-2024-23081
A null pointer exception vulnerability was found in Threeten Backport. If the other parameter is null in ChronoLocalDate, a NullPointerException is thrown.
Mitigation
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
References
bugzilla.redhat.com/show_bug.cgi?id=2274197
gist.github.com/LLM4IG/3cc9183dcd887020368a0bafeafec5e3
github.com/ThreeTen/threetenbp/blob/adcdbc462b4e93e68e6f9c9a82217d0478b7d635/src/site/markdown/security.md?plain=1#L17
github.com/ThreeTen/threetenbp/blob/main/src/main/java/org/threeten/bp/LocalDate.java#L1671
nvd.nist.gov/vuln/detail/CVE-2024-23081
www.cve.org/CVERecord?id=CVE-2024-23081
Related
