Skip to content

Instantly share code, notes, and snippets.

[CVE ID]
CVE-2024-22949
[PRODUCT]
JFreeChart
[VERSION]
v1.5.4
[PROBLEM TYPE]
Buffer Overflow - NullPointerException
[DESCRIPTION]
Method draw(Graphics2D g2, CategoryPlot plot, Rectangle2D dataArea, CategoryAxis domainAxis, ValueAxis rangeAxis) on line 287 in org/jfree/chart/annotations/CategoryLineAnnotation. java throws a NullPointerception if argument plot is null.
@LLM4IG
LLM4IG / gist:f55de46e65fb5a19b7815adb36fd858b
Created April 8, 2024 15:45
[CVE-2023-52070 / CVE-2024-23077]
[CVE ID]
CVE-2023-52070 / CVE-2024-23077
[PRODUCT]
JFreeChart
[VERSION]
v1.5.4
[PROBLEM TYPE]
Buffer Overflow - ArrayIndexOutOfBounds
[DESCRIPTION]
The method named 'setSeriesNeedle(int index, int type)' in class 'org.jfree.chart.plot.CompassPlot' can cause 'java.lang.ArrayIndexOutOfBoundsException' if the parameter 'index' is greater than the length of the array 'seriesNeedle'.