...
CWE ID 374, "Passing Mutable Objects to an Untrusted Method" | |
| CWE ID 375, "Returning a Mutable Object to an Untrusted Caller" |
Secure Coding Guidelines for the Java Programming Language, Version 3.0 | Guideline 2-3 Support copy functionality for a mutable class |
Bibliography
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="0b15983a3d5cf8ab-838f903c-4d214c35-8aa89f13-abb2daa7e95eeda02bbcdf4d"><ac:plain-text-body><![CDATA[ | [[API 2006 | AA. Bibliography#API 06]] | [method clone() | http://java.sun.com/javase/6/docs/api/java/lang/Object.html#clone()] | ]]></ac:plain-text-body></ac:structured-macro> | |||
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="2b92dba1c80ecd6d-156f31dc-403f433b-a6b48af8-0aa85c0a5fa843a7028f66bb"><ac:plain-text-body><![CDATA[ | [[Bloch 2008 | AA. Bibliography#Bloch 08]] | Item 39: Make defensive copies when needed and Item 11: Override clone judiciously | ]]></ac:plain-text-body></ac:structured-macro> | ||||
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="97fd90ad875347b3-8a756399-42c34d5e-92d3-522591bbb823"><ac:plain-text-body><![CDATA[ | [[SCG 2009 | AA. Bibliography#SCG 09]] | Guideline 2-3 Support copy functionality for a mutable class | ]]></ac:plain-text-body></ac:structured-macro> | <ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="09bdf6fd-cdd3-4aed-a5de-678c439b68d2bf77-fad7ff39bc1b"><ac:plain-text-body><![CDATA[ | [[Security 2006 | AA. Bibliography#Security 06]] | ]]></ac:plain-text-body></ac:structured-macro> |
...