...
CWE ID 374, "Passing Mutable Objects to an Untrusted Method" | |
| CWE ID 375, "Returning a Mutable Object to an Untrusted Caller" |
Secure Coding Guidelines for the Java Programming Language, Version 3.0 | Guideline 2-3 Support copy functionality for a mutable class |
Bibliography
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="72ac8517dd7595bd-aeefee90-45ef45cb-9933afd0-921e4d3929842690822b7cba"><ac:plain-text-body><![CDATA[ | [[API 2006 | AA. Bibliography#API 06]] | [method clone() | http://java.sun.com/javase/6/docs/api/java/lang/Object.html#clone()] | ]]></ac:plain-text-body></ac:structured-macro> | |||
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="31fa5a2e5b66ac39-ee2601a2-405c4333-bfb4993e-7dbbf75d71bf30a95df2edb2"><ac:plain-text-body><![CDATA[ | [[Bloch 2008 | AA. Bibliography#Bloch 08]] | Item 39: Make defensive copies when needed and Item 11: Override clone judiciously | ]]></ac:plain-text-body></ac:structured-macro> | ||||
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="cdba78d7d8579d94-cbd9ad28-46d54049-bd33-c1c5909dd75f"><ac:plain-text-body><![CDATA[ | [[SCG 2009 | AA. Bibliography#SCG 09]] | Guideline 2-3 Support copy functionality for a mutable class | ]]></ac:plain-text-body></ac:structured-macro> | <ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="37ad1713-7855-4138-822a-cb9a1da886a9852f-247fa2196035"><ac:plain-text-body><![CDATA[ | [[Security 2006 | AA. Bibliography#Security 06]] | ]]></ac:plain-text-body></ac:structured-macro> |
...